cbcvebase.
CVE-2007-2966
published 2007-05-31

CVE-2007-2966: Buffer overflow in the LHA decompression component in F-Secure anti-virus products for Microsoft Windows and Linux before 20070529 allows remote attackers to…

PriorityP335high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
5.21%
91.5th percentile
Buffer overflow in the LHA decompression component in F-Secure anti-virus products for Microsoft Windows and Linux before 20070529 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted LHA archive, related to an integer wrap, a similar issue to CVE-2006-4335.

Affected

18 ranges
VendorProductVersion rangeFixed in
f-securef-secure_anti-virus<= 4.65
f-securef-secure_anti-virus<= 5.42
f-securef-secure_anti-virus<= 5.44
f-securef-secure_anti-virus<= 5.52
f-securef-secure_anti-virus<= 5.61
f-securef-secure_anti-virus<= 6.40
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus_client_security<= 6.03
f-securef-secure_anti-virus_linux_client_security<= 5.30
f-securef-secure_anti-virus_linux_server_security<= 5.30
f-securef-secure_internet_security
f-securef-secure_internet_security
f-securef-secure_internet_security
f-securef-secure_protection_service<= 6.40
f-secureinternet_gatekeeper<= 2.16
f-secureinternet_gatekeeper<= 6.60
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.