CVE Vulnerability

CVE-2007-1669

zoo decoder 2.10 (zoo-2.10), as used in multiple products including (1) Barracuda Spam Firewall 3.4 and later with virusdef before 2.0.6399, (2) Spam Firewall before 3.4 20070319 with virusdef before 2.0.6399o, and (3) AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

7.8 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 6.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www.securityfocus.com/bid/23823 Exploit
http://secunia.com/advisories/25122 Patch Vendor Advisory
http://www.amavis.org/security/asa-2007-2.txt
http://www.attrition.org/pipermail/vim/2007-July/001725.html
http://www.osvdb.org/35795
http://secunia.com/advisories/25315 Vendor Advisory
http://securityreason.com/securityalert/2680
http://www.vupen.com/english/advisories/2007/1699
https://exchange.xforce.ibmcloud.com/vulnerabilities/34080
http://www.securityfocus.com/archive/1/467646/100/0/threaded
Configurations

Configuration 1
Information

Published : 2007-05-09 12:19

Updated : 2018-10-16 04:40

NVD link : CVE-2007-1669

Mitre link : CVE-2007-1669

Products Affected
No products.
CWE
NVD-CWE-Other