CVE-2007-1792 — Mail Security vulnerability

3 documents3 sources

Severity

7.8HIGHNVD

EPSS

2.1%

top 15.89%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Mail Security

Timeline

PublishedJun 27

Latest updateMay 1

Description

libdayzero.dll in the Filter Hub Service (filter-hub.exe) in Symantec Mail Security for SMTP before 5.0.1 Patch 181 and Mail Security Appliance before 5.0.0-36 allows remote attackers to cause a denial of service (crash) via a crafted executable attachment in an e-mail, involving the detection of "PE-Shield v0.2" and "ASPack v1.00-1.08.02".

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

▶NVDsymantec/mail_security5.0.0, 5.0.1+1

Patches

Patch: secunia.com ↗Patch: securityresponse.symantec.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-78ph-m4fp-cfmc: libdayzero↗2022-05-01

▶

CVEList

CVE-2007-1792: libdayzero↗2007-06-27

▶