Lucene search

K
cve[email protected]CVE-2007-2846
HistoryMay 24, 2007 - 6:30 p.m.

CVE-2007-2846

2007-05-2418:30:00
CWE-119
web.nvd.nist.gov
20
cve-2007-2846
buffer overflow
avast
anti-virus
security vulnerability

8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.338 Low

EPSS

Percentile

97.1%

Heap-based buffer overflow in the SIS unpacker in avast! Anti-Virus Managed Client before 4.7.700 allows user-assisted remote attackers to execute arbitrary code via a crafted SIS archive, resulting from an “integer cast around.”

Affected configurations

NVD
Node
avas\!tavast\!_antivirusMatch4.6.394
OR
avast\!avast\!_antivirusRange4.7.652

8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.338 Low

EPSS

Percentile

97.1%

Related for CVE-2007-2846