CVE-2007-1281

Currently unrated

Key Information:

Vendor: kaspersky
Status: Kaspersky Antivirus Engine
Vendor: CVE Published:; 6 March 2007

Summary

Kaspersky AntiVirus Engine 6.0.1.411 for Windows and 5.5-10 for Linux allows remote attackers to cause a denial of service (CPU consumption) via a crafted UPX compressed file with a negative offset, which triggers an infinite loop during decompression.

References

http://secunia.com/advisories/24391

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/32797

vdb-entryx_refsource_XF

http://www.securitytracker.com/id?1017718

vdb-entryx_refsource_SECTRACK

EPSS Score

2% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 6, 2007
Vulnerability Reserved
Mar 5, 2007