CVE-2007-2965

3 documents3 sources

Severity

7.2HIGH

EPSS

0.1%

top 80.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

F-secure F-secure Anti-virus F-secure F-secure Anti-virus Client Security F-secure F-secure Anti-virus Linux Client Security +4 more

Timeline

PublishedMay 31

Latest updateMay 1

Description

Unspecified vulnerability in the Real-time Scanning component in multiple F-Secure products, including Internet Security 2005, 2006 and 2007; Anti-Virus 2005, 2006 and 2007; and Solutions based on F-Secure Protection Service for Consumers 6.40 and earlier allows local users to gain privileges via a crafted I/O request packet (IRP), related to IOCTL (Input/Output Control) and "access validation of the address space."

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages7 packages

▶NVDf-secure/f-secure_anti-virus_client_security6.03

▶NVDf-secure/f-secure_anti-virus_linux_client_security5.30

▶NVDf-secure/f-secure_anti-virus4.65+8

▶NVDf-secure/f-secure_anti-virus_linux5.30

▶NVDf-secure/f-secure_protection_service6.40

Patches

Patch: secunia.com ↗Patch: www.f-secure.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-5m34-c4j8-7mfx: Unspecified vulnerability in the Real-time Scanning component in multiple F-Secure products, including Internet Security 2005, 2006 and 2007; Anti-Vir↗2022-05-01

▶

CVEList

CVE-2007-2965: Unspecified vulnerability in the Real-time Scanning component in multiple F-Secure products, including Internet Security 2005, 2006 and 2007; Anti-Vir↗2007-05-31

▶