Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2007-1673

unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

Published

2007-05-09T01:19:00.000

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 7.8 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: COMPLETE
Exploitability Score

10.0

Impact Score

6.9

Weaknesses
  • Type: Primary
    CWE-399
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application amavis amavis ≤ 2.4.1 Yes
Application avast avast_antivirus ≤ 4.7.980 Yes
Application avast avast_antivirus 4.6.394 Yes
Application avast avast_antivirus 4.7.652 Yes
Application avast avast_antivirus 4.7.700 Yes
Application avast avast_antivirus_home 4.0 Yes
Application avast avast_antivirus_home 4.6 Yes
Application avast avast_antivirus_home 4.6.652 Yes
Application avast avast_antivirus_home 4.6.655 Yes
Application avast avast_antivirus_home 4.6.665 Yes
Application avast avast_antivirus_home 4.6.691 Yes
Application avast avast_antivirus_home 4.7.827 Yes
Application avast avast_antivirus_home 4.7.827 Yes
Application avast avast_antivirus_home 4.7.844 Yes
Application avast avast_antivirus_home 4.7.844 Yes
Application avast avast_antivirus_home 4.7.869 Yes
Application avast avast_antivirus_home 4.7.869 Yes
Application avast avast_antivirus_home 4.7.1043 Yes
Application avast avast_antivirus_home 4.7.1043 Yes
Application avast avast_antivirus_home 4.7.1098 Yes
Application avast avast_antivirus_home 4.7.1098 Yes
Application avast avast_antivirus_professional 4.0 Yes
Application avast avast_antivirus_professional 4.6 Yes
Application avast avast_antivirus_professional 4.6.603 Yes
Application avast avast_antivirus_professional 4.6.652 Yes
Application avast avast_antivirus_professional 4.6.665 Yes
Application avast avast_antivirus_professional 4.6.691 Yes
Application avast avast_antivirus_professional 4.7.827 Yes
Application avast avast_antivirus_professional 4.7.827 Yes
Application avast avast_antivirus_professional 4.7.844 Yes
Application avast avast_antivirus_professional 4.7.844 Yes
Application avast avast_antivirus_professional 4.7.869 Yes
Application avast avast_antivirus_professional 4.7.1043 Yes
Application avast avast_antivirus_professional 4.7.1043 Yes
Application avast avast_antivirus_professional 4.7.1098 Yes
Application avira antivir * Yes
Application avira antivir 6.35.00.00 Yes
Application avira antivir 7.04.00.23 Yes
Application avira antivir_personal * Yes
Application avira antivir_personal * Yes
Application avira antivir_personal * Yes
Application avira antivir_personal ≤ 7.3.0.5 Yes
Application avira antivir_personal 7 Yes
Application avira antivir_personal 7 Yes
Application panda panda_antivirus 2007 Yes
Application panda panda_antivirus_and_firewall 2007 Yes
Application picozip picozip * Yes
Application rahul_dhesi zoo ≤ 2.10 Yes
Application unzoo unzoo 4.4 Yes
Application winace winace * Yes
Hardware barracuda_networks barracuda_spam_firewall * Yes
Hardware barracuda_networks barracuda_spam_firewall model_100 Yes
Hardware barracuda_networks barracuda_spam_firewall model_200 Yes
Hardware barracuda_networks barracuda_spam_firewall model_300 Yes
Hardware barracuda_networks barracuda_spam_firewall model_400 Yes
Hardware barracuda_networks barracuda_spam_firewall model_500 Yes
Hardware barracuda_networks barracuda_spam_firewall model_600 Yes
Hardware barracuda_networks barracuda_spam_firewall model_800 Yes
Hardware barracuda_networks barracuda_spam_firewall model_900 Yes
References