Denial of Service Vulnerability in AMaViS and Other Products by Multiple Vendors
CVE-2007-1673

Currently unrated

Key Information:

Vendor: Barracuda Networks
Status: Barracuda Spam Firewall; Avast Antivirus Home; Antivir; Avast Antivirus Professional
Vendor: CVE Published:; 9 May 2007

🔔 Create Barracuda Networks Vulnerability Alert

What is CVE-2007-1673?

The vulnerability exists in unzoo.c, which is utilized in various products including AMaViS 2.4.1 and earlier versions. It permits remote attackers to exploit a specific ZOO archive containing a direntry structure that refers back to an earlier file, leading to an infinite loop condition. This results in a denial of service, potentially causing significant disruptions in the affected systems. Organizations using these products should consider applying patches or implementing alternative solutions to mitigate the risk of exploitation.

References

http://www.amavis.org/security/asa-2007-2.txt

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/34080

vdb-entryx_refsource_XF

http://osvdb.org/36208

vdb-entryx_refsource_OSVDB

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 9, 2007
Vulnerability Reserved
Mar 24, 2007

JSON