Lucene search

PRIOn knowledge basePRION:CVE-2007-1673

HistoryMay 09, 2007 - 1:19 a.m.

Code injection

2007-05-0901:19:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.048 Low

EPSS

Percentile

92.5%

JSON

unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

CPENameOperatorVersion
amavisle2.4.1
avast_antiviruseq4.7.700
avast_antiviruseq4.6.394
avast_antivirusle4.7.980
avast_antiviruseq4.7.652
avast_antivirus_homeeq4.7.1098 windows
avast_antivirus_homeeq4.6.652
avast_antivirus_homeeq4.6.655
avast_antivirus_homeeq4.7.827
avast_antivirus_homeeq4.7.1098

Name	Operator	Version
amavis	le	2.4.1
avast_antivirus	eq	4.7.700
avast_antivirus	eq	4.6.394
avast_antivirus	le	4.7.980
avast_antivirus	eq	4.7.652
avast_antivirus_home	eq	4.7.1098 windows
avast_antivirus_home	eq	4.6.652
avast_antivirus_home	eq	4.6.655
avast_antivirus_home	eq	4.7.827
avast_antivirus_home	eq	4.7.1098

Rows per page:

1-10 of 521

References

osvdb.org/36208

secunia.com/advisories/25315

securityreason.com/securityalert/2680

www.amavis.org/security/asa-2007-2.txt

www.securityfocus.com/archive/1/467646/100/0/threaded

www.securityfocus.com/bid/23823

exchange.xforce.ibmcloud.com/vulnerabilities/34080

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.048 Low

EPSS

Percentile

92.5%

JSON

Related for PRION:CVE-2007-1673