CVE-2007-3300

3 documents3 sources

Severity

9.3CRITICAL

EPSS

4.4%

top 11.01%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

F-secure F-secure Anti-virus Linux Client Security F-secure F-secure Anti-virus Linux Server Security F-secure Internet Gatekeeper +3 more

Timeline

PublishedJun 20

Latest updateMay 1

Description

Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070619 allow remote attackers to bypass scanning via a crafted header in a (1) LHA or (2) RAR archive.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages6 packages

▶NVDf-secure/f-secure_anti-virus_linux5.52

▶NVDf-secure/f-secure_anti-virus_linux_client_security5.52

▶NVDf-secure/f-secure_anti-virus35 versions+34

▶NVDf-secure/internet_gatekeeper6.61+4

▶NVDf-secure/f-secure_internet_security2005, 2006, 2007+2

🔴Vulnerability Details

GHSA

GHSA-w2m4-mx84-gv3g: Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070619 allow remote attackers to bypass scanning via a crafted header i↗2022-05-01

▶

CVEList

CVE-2007-3300: Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070619 allow remote attackers to bypass scanning via a crafted header i↗2007-06-20

▶