exploitDog

CVE-2007-1281

Опубликовано: 06 мар. 2007

Источник: nvd

CVSS2: 7.8

EPSS Низкий

Описание

Kaspersky AntiVirus Engine 6.0.1.411 for Windows and 5.5-10 for Linux allows remote attackers to cause a denial of service (CPU consumption) via a crafted UPX compressed file with a negative offset, which triggers an infinite loop during decompression.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:microsoft:all_windows:abstract_cpe:*:*:*:*:*:*:*

cpe:2.3:a:kaspersky_lab:kaspersky_antivirus_engine:6.0.1.411:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:o:linux:linux_kernel:*:*:ia32_64-bit:*:*:*:*:*

cpe:2.3:a:kaspersky_lab:kaspersky_antivirus_engine:5.5.10:*:*:*:*:*:*:*

EPSS

Процентиль: 81%

0.01589

Низкий

7.8 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-9j92-f5cx-hxq6

github

почти 4 года назад

Kaspersky AntiVirus Engine 6.0.1.411 for Windows and 5.5-10 for Linux allows remote attackers to cause a denial of service (CPU consumption) via a crafted UPX compressed file with a negative offset, which triggers an infinite loop during decompression.

EPSS

Процентиль: 81%

0.01589

Низкий

7.8 High

CVSS2

Дефекты

NVD-CWE-Other