Denial of Service Vulnerability in Avira Antivir Antivirus
CVE-2007-2973

Currently unrated

Key Information:

Vendor: Avira
Status: Av Pack; Antivir
Vendor: CVE Published:; 1 June 2007

What is CVE-2007-2973?

Remote attackers are able to exploit a flaw in Avira Antivir Antivirus prior to version 7.03.00.09, resulting in significant CPU consumption and an infinite loop scenario. This vulnerability is triggered by processing a specially crafted TAR archive, causing the antivirus software to become unresponsive and disrupt system functionality. Users of the affected versions are strongly advised to update to the latest release to mitigate this vulnerability.

References

http://www.securityfocus.com/bid/24239

vdb-entryx_refsource_BID

http://www.securityfocus.com/bid/24187

vdb-entryx_refsource_BID

http://forum.antivir-pe.de/thread.php?threadid=22528

x_refsource_CONFIRM

Timeline

Vulnerability published
Jun 1, 2007
Vulnerability Reserved
May 31, 2007