CVE-2007-2967

CVE	CVE-2007-2967
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2007-05-31 23:30:00 UTC
Updated	2018-10-16 16:46:00 UTC
Description	Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070522 allow remote attackers to cause a denial of service (file scanning infinite loop) via certain crafted (1) ARJ archives or (2) FSG packed files.

Problem Types: CWE-20

Type	Vendor	Product	Version	Update	Edition	Language
Application	F-secure	F-secure Anti-virus	2005	All	All	All
Application	F-secure	F-secure Anti-virus	2006	All	All	All
Application	F-secure	F-secure Anti-virus	2007	All	All	All
Application	F-secure	F-secure Anti-virus	2005	All	All	All
Application	F-secure	F-secure Anti-virus	2006	All	All	All
Application	F-secure	F-secure Anti-virus	2007	All	All	All
Application	F-secure	F-secure Anti-virus	All	All	linux_gateways	All
Application	F-secure	F-secure Anti-virus	All	All	linux_servers	All
Application	F-secure	F-secure Anti-virus	All	All	windows_servers	All
Application	F-secure	F-secure Anti-virus	All	All	workstations	All
Application	F-secure	F-secure Anti-virus	All	All	citrix_servers	All
Application	F-secure	F-secure Anti-virus	All	All	mimesweeper	All
Application	F-secure	F-secure Anti-virus	All	All	ms_exchange	All
Application	F-secure	F-secure Anti-virus Client Security	All	All	All	All
Application	F-secure	F-secure Anti-virus Linux Client Security	All	All	All	All
Application	F-secure	F-secure Anti-virus Linux Server Security	All	All	All	All
Application	F-secure	F-secure Internet Security	2005	All	All	All
Application	F-secure	F-secure Internet Security	2006	All	All	All
Application	F-secure	F-secure Internet Security	2007	All	All	All
Application	F-secure	F-secure Internet Security	2005	All	All	All
Application	F-secure	F-secure Internet Security	2006	All	All	All
Application	F-secure	F-secure Internet Security	2007	All	All	All
Application	F-secure	F-secure Protection Service	All	All	consumers	All
Application	F-secure	Internet Gatekeeper	All	All	linux	All
Application	F-secure	Internet Gatekeeper	All	All	All	All

Reference	Source	Link	Tags
SecurityFocus	BUGTRAQ	www.securityfocus.com
SecurityTracker.com Archives - F-Secure Internet Gatekeeper Lets Remote Users Execute Arbitrary Code	SECTRACK	securitytracker.com
Webmail : Solution de messagerie professionnelle - OVHcloud- OVH	VUPEN	www.vupen.com	Vendor Advisory
36725	OSVDB	osvdb.org
n.runs AG - Security Tools and Security Advisories	MISC	www.nruns.com
n.runs AG - Security Tools and Security Advisories	MISC	www.nruns.com
[Full-Disclosure] Mailing List Charter	FULLDISC	lists.grok.org.uk
[Full-Disclosure] Mailing List Charter	FULLDISC	lists.grok.org.uk
36726	OSVDB	osvdb.org
F-Secure Security Bulletin FSC-2007-3	CONFIRM	www.f-secure.com	Patch, Vendor Advisory
SecurityTracker.com Archives - F-Secure Internet Security Lets Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges	SECTRACK	www.securitytracker.com
IBM X-Force Exchange	XF	exchange.xforce.ibmcloud.com
F-Secure Packed Executable and Archive Scanning Denial of Service - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
SecurityFocus	BUGTRAQ	www.securityfocus.com
SecurityTracker.com Archives - F-Secure Anti-Virus Lets Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges	SECTRACK	www.securitytracker.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.