PRIOn knowledge basePRION:CVE-2007-1669Code injection
7.1 High
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.143 Low
EPSS
Percentile
95.5%
zoo decoder 2.10 (zoo-2.10), as used in multiple products including (1) Barracuda Spam Firewall 3.4 and later with virusdef before 2.0.6399, (2) Spam Firewall before 3.4 20070319 with virusdef before 2.0.6399o, and (3) AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
References
secunia.com/advisories/25122
secunia.com/advisories/25315
securityreason.com/securityalert/2680
www.amavis.org/security/asa-2007-2.txt
www.attrition.org/pipermail/vim/2007-July/001725.html
www.osvdb.org/35795
www.securityfocus.com/archive/1/467646/100/0/threaded
www.securityfocus.com/bid/23823
www.vupen.com/english/advisories/2007/1699
exchange.xforce.ibmcloud.com/vulnerabilities/34080
Related
7.1 High
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.143 Low
EPSS
Percentile
95.5%