Back to search
CVE-2007-0125
Published: Jan 9, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Kaspersky Labs Antivirus Engine 6.0 for Windows and 5.5-10 for Linux before 20070102 enter an infinite loop upon encountering an invalid NumberOfRvaAndSizes value in the Optional Windows Header of a portable executable (PE) file, which allows remote attackers to cause a denial of service (CPU consumption) by scanning a crafted PE file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20070105 Kaspersky Antivirus Scan Engine PE File Denial of Service Vulnerability
third-party-advisory
x_refsource_IDEFENSE
kaspersky-antivirus-pe-dos(31315)
vdb-entry
x_refsource_XF
23575
third-party-advisory
x_refsource_SECUNIA
ADV-2007-0067
vdb-entry
x_refsource_VUPEN
32588
vdb-entry
x_refsource_OSVDB
21901
vdb-entry
x_refsource_BID
1017476
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now