CVE-2007-3970Race Condition in Nod32 Antivirus

CWE-362Race Condition3 documents3 sources
Severity
7.6HIGHNVD
EPSS
18.6%
top 4.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Eset Nod32 Antivirus
Timeline
PublishedJul 25
Latest updateMay 1

Description

Race condition in ESET NOD32 Antivirus before 2.2289 allows remote attackers to execute arbitrary code via a crafted CAB file, which triggers heap corruption.

CVSS vector

AV:N/AC:H/C:C/I:C/A:CExploitability: 4.9 | Impact: 10.0

Affected Packages1 packages

NVDeset/nod32_antivirus< 2.2289

Patches

Patch: secunia.comPatch: www.securityfocus.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-h7hj-mf8m-2h22: Race condition in ESET NOD32 Antivirus before 22022-05-01
CVEList
CVE-2007-3970: Race condition in ESET NOD32 Antivirus before 22007-07-25
CVE-2007-3970 — Race Condition in Eset Nod32 Antivirus | cvebase