CVE-2007-1673 (CNNVD-200705-118)
HIGH
中文标题:
Vendors Zoo Compression Algorithm 'unzoo.c' 远程拒绝服务漏洞
英文标题:
unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to...
CVSS分数:
7.8
发布时间:
2007-05-09 01:00:00
漏洞类型:
资源管理错误
状态:
PUBLISHED
数据质量分数:
0.30
数据版本:
v3
漏洞描述
中文描述:
unzoo.c允许远程攻击者借助一个带有可以指向先前文件的direntry结构的ZOO文件存档,引起拒绝服务攻击(死循环)。
英文描述:
unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
CWE类型:
CWE-399
标签:
(暂无数据)
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| amavis | amavis | * | - | - |
cpe:2.3:a:amavis:amavis:*:*:*:*:*:*:*:*
|
| avast | avast_antivirus | * | - | - |
cpe:2.3:a:avast:avast_antivirus:*:*:*:*:*:*:*:*
|
| avast | avast_antivirus | 4.6.394 | - | - |
cpe:2.3:a:avast:avast_antivirus:4.6.394:*:*:*:*:*:*:*
|
| avast | avast_antivirus | 4.7.652 | - | - |
cpe:2.3:a:avast:avast_antivirus:4.7.652:*:*:*:*:*:*:*
|
| avast | avast_antivirus | 4.7.700 | - | - |
cpe:2.3:a:avast:avast_antivirus:4.7.700:*:*:*:*:*:*:*
|
| avast | avast_antivirus_home | 4.0 | - | - |
cpe:2.3:a:avast:avast_antivirus_home:4.0:*:*:*:*:*:*:*
|
| avast | avast_antivirus_home | 4.6 | - | - |
cpe:2.3:a:avast:avast_antivirus_home:4.6:*:*:*:*:*:*:*
|
| avast | avast_antivirus_home | 4.6.652 | - | - |
cpe:2.3:a:avast:avast_antivirus_home:4.6.652:*:*:*:*:*:*:*
|
| avast | avast_antivirus_home | 4.6.655 | - | - |
cpe:2.3:a:avast:avast_antivirus_home:4.6.655:*:*:*:*:*:*:*
|
| avast | avast_antivirus_home | 4.6.665 | - | - |
cpe:2.3:a:avast:avast_antivirus_home:4.6.665:*:*:*:*:*:*:*
|
| avast | avast_antivirus_home | 4.6.691 | - | - |
cpe:2.3:a:avast:avast_antivirus_home:4.6.691:*:*:*:*:*:*:*
|
| avast | avast_antivirus_home | 4.7.827 | - | - |
cpe:2.3:a:avast:avast_antivirus_home:4.7.827:*:*:*:*:*:*:*
|
| avast | avast_antivirus_home | 4.7.844 | - | - |
cpe:2.3:a:avast:avast_antivirus_home:4.7.844:*:*:*:*:*:*:*
|
| avast | avast_antivirus_home | 4.7.869 | - | - |
cpe:2.3:a:avast:avast_antivirus_home:4.7.869:*:*:*:*:*:*:*
|
| avast | avast_antivirus_home | 4.7.1043 | - | - |
cpe:2.3:a:avast:avast_antivirus_home:4.7.1043:*:*:*:*:*:*:*
|
| avast | avast_antivirus_home | 4.7.1098 | - | - |
cpe:2.3:a:avast:avast_antivirus_home:4.7.1098:*:*:*:*:*:*:*
|
| avast | avast_antivirus_professional | 4.0 | - | - |
cpe:2.3:a:avast:avast_antivirus_professional:4.0:*:*:*:*:*:*:*
|
| avast | avast_antivirus_professional | 4.6 | - | - |
cpe:2.3:a:avast:avast_antivirus_professional:4.6:*:*:*:*:*:*:*
|
| avast | avast_antivirus_professional | 4.6.603 | - | - |
cpe:2.3:a:avast:avast_antivirus_professional:4.6.603:*:*:*:*:*:*:*
|
| avast | avast_antivirus_professional | 4.6.652 | - | - |
cpe:2.3:a:avast:avast_antivirus_professional:4.6.652:*:*:*:*:*:*:*
|
| avast | avast_antivirus_professional | 4.6.665 | - | - |
cpe:2.3:a:avast:avast_antivirus_professional:4.6.665:*:*:*:*:*:*:*
|
| avast | avast_antivirus_professional | 4.6.691 | - | - |
cpe:2.3:a:avast:avast_antivirus_professional:4.6.691:*:*:*:*:*:*:*
|
| avast | avast_antivirus_professional | 4.7.827 | - | - |
cpe:2.3:a:avast:avast_antivirus_professional:4.7.827:*:*:*:*:*:*:*
|
| avast | avast_antivirus_professional | 4.7.844 | - | - |
cpe:2.3:a:avast:avast_antivirus_professional:4.7.844:*:*:*:*:*:*:*
|
| avast | avast_antivirus_professional | 4.7.869 | - | - |
cpe:2.3:a:avast:avast_antivirus_professional:4.7.869:*:*:*:*:*:*:*
|
| avast | avast_antivirus_professional | 4.7.1043 | - | - |
cpe:2.3:a:avast:avast_antivirus_professional:4.7.1043:*:*:*:*:*:*:*
|
| avast | avast_antivirus_professional | 4.7.1098 | - | - |
cpe:2.3:a:avast:avast_antivirus_professional:4.7.1098:*:*:*:*:*:*:*
|
| avira | antivir | * | - | - |
cpe:2.3:a:avira:antivir:*:*:*:*:*:*:*:*
|
| avira | antivir | 6.35.00.00 | - | - |
cpe:2.3:a:avira:antivir:6.35.00.00:*:*:*:*:*:*:*
|
| avira | antivir | 7.04.00.23 | - | - |
cpe:2.3:a:avira:antivir:7.04.00.23:*:*:*:*:*:*:*
|
| avira | antivir_personal | * | - | - |
cpe:2.3:a:avira:antivir_personal:*:*:*:*:*:*:*:*
|
| avira | antivir_personal | 7 | - | - |
cpe:2.3:a:avira:antivir_personal:7:*:*:*:*:*:*:*
|
| panda | panda_antivirus | 2007 | - | - |
cpe:2.3:a:panda:panda_antivirus:2007:*:*:*:*:*:*:*
|
| panda | panda_antivirus_and_firewall | 2007 | - | - |
cpe:2.3:a:panda:panda_antivirus_and_firewall:2007:*:*:*:*:*:*:*
|
| picozip | picozip | * | - | - |
cpe:2.3:a:picozip:picozip:*:*:*:*:*:*:*:*
|
| rahul_dhesi | zoo | * | - | - |
cpe:2.3:a:rahul_dhesi:zoo:*:*:*:*:*:*:*:*
|
| unzoo | unzoo | 4.4 | - | - |
cpe:2.3:a:unzoo:unzoo:4.4:*:*:*:*:*:*:*
|
| winace | winace | * | - | - |
cpe:2.3:a:winace:winace:*:*:*:*:*:*:*:*
|
| barracuda_networks | barracuda_spam_firewall | * | - | - |
cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:*:*:*:*:*:*:*:*
|
| barracuda_networks | barracuda_spam_firewall | model_100 | - | - |
cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:model_100:*:*:*:*:*:*:*
|
| barracuda_networks | barracuda_spam_firewall | model_200 | - | - |
cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:model_200:*:*:*:*:*:*:*
|
| barracuda_networks | barracuda_spam_firewall | model_300 | - | - |
cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:model_300:*:*:*:*:*:*:*
|
| barracuda_networks | barracuda_spam_firewall | model_400 | - | - |
cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:model_400:*:*:*:*:*:*:*
|
| barracuda_networks | barracuda_spam_firewall | model_500 | - | - |
cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:model_500:*:*:*:*:*:*:*
|
| barracuda_networks | barracuda_spam_firewall | model_600 | - | - |
cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:model_600:*:*:*:*:*:*:*
|
| barracuda_networks | barracuda_spam_firewall | model_800 | - | - |
cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:model_800:*:*:*:*:*:*:*
|
| barracuda_networks | barracuda_spam_firewall | model_900 | - | - |
cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:model_900:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
(暂无数据)
英文解决方案:
(暂无数据)
临时解决方案:
(暂无数据)
参考链接
无标题
x_refsource_CONFIRM
cve.org
访问
cve.org
multiple-vendor-zoo-dos(34080)
vdb-entry
cve.org
访问
cve.org
36208
vdb-entry
cve.org
访问
cve.org
23823
vdb-entry
cve.org
访问
cve.org
25315
third-party-advisory
cve.org
访问
cve.org
20070504 Multiple vendors ZOO file decompression infinite loop DoS
mailing-list
cve.org
访问
cve.org
2680
third-party-advisory
cve.org
访问
cve.org
CVSS评分详情
7.8
HIGH
CVSS向量:
AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS版本:
2.0
机密性
NONE
完整性
NONE
可用性
COMPLETE
时间信息
发布时间:
2007-05-09 01:00:00
修改时间:
2024-08-07 13:06:25
创建时间:
2025-11-11 15:32:42
更新时间:
2025-11-11 15:49:17
利用信息
暂无可利用代码信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2007-1673 |
2025-11-11 15:17:51 | 2025-11-11 07:32:42 |
| NVD | nvd_CVE-2007-1673 |
2025-11-11 14:52:10 | 2025-11-11 07:41:28 |
| CNNVD | cnnvd_CNNVD-200705-118 |
2025-11-11 15:08:56 | 2025-11-11 07:49:17 |
版本与语言
当前版本:
v3
主要语言:
EN
支持语言:
EN
ZH
安全公告
暂无安全公告信息
变更历史
v3
CNNVD
2025-11-11 15:49:17
vulnerability_type: 未提取 → 资源管理错误; cnnvd_id: 未提取 → CNNVD-200705-118; data_sources: ['cve', 'nvd'] → ['cnnvd', 'cve', 'nvd']
查看详细变更
- vulnerability_type: 未提取 -> 资源管理错误
- cnnvd_id: 未提取 -> CNNVD-200705-118
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
v2
NVD
2025-11-11 15:41:28
severity: SeverityLevel.MEDIUM → SeverityLevel.HIGH; cvss_score: 未提取 → 7.8; cvss_vector: NOT_EXTRACTED → AV:N/AC:L/Au:N/C:N/I:N/A:C; cvss_version: NOT_EXTRACTED → 2.0; affected_products_count: 0 → 47; data_sources: ['cve'] → ['cve', 'nvd']
查看详细变更
- severity: SeverityLevel.MEDIUM -> SeverityLevel.HIGH
- cvss_score: 未提取 -> 7.8
- cvss_vector: NOT_EXTRACTED -> AV:N/AC:L/Au:N/C:N/I:N/A:C
- cvss_version: NOT_EXTRACTED -> 2.0
- affected_products_count: 0 -> 47
- data_sources: ['cve'] -> ['cve', 'nvd']