CVE-2007-1673

CWE-3993 documents3 sources

Severity

7.8HIGH

EPSS

1.2%

top 21.40%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Amavis Amavis Avast Avast Antivirus Avira Antivir Personal +8 more

Timeline

PublishedMay 9

Latest updateMay 1

Description

unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages11 packages

▶NVDamavis/amavis2.4.1

▶NVDunzoo/unzoo4.4

▶NVDrahul_dhesi/zoo2.10

▶NVDavast/avast_antivirus4.7.980+3

▶NVDavira/antivir_personal7.3.0.5+1

🔴Vulnerability Details

GHSA

GHSA-2j49-3cqv-33p2: unzoo↗2022-05-01

▶

CVEList

CVE-2007-1673: unzoo↗2007-05-09

▶