Vulnerability CVE-2007-2026


Published: 2007-04-13   Modified: 2012-02-12

Description:
The gnu regular expression code in file 4.20 allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted document with a large number of line feed characters, which is not well handled by OS/2 REXX regular expressions that use wildcards, as originally reported for AMaViS.

Type:

CWE-Other

Vendor: Gentoo
Product: FILE 
Version: 4.20;
Vendor: Amavis
Product: Virus scanner 

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete

 References:
http://sourceforge.net/mailarchive/forum.php?thread_name=755AF709E5B77E6EA58479D5%40foxx.lsit.ucsb.edu&forum_name=amavis-user
http://www.amavis.org/security/asa-2007-3.txt
http://www.gentoo.org/security/en/glsa/glsa-200704-13.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:114
http://www.securityfocus.com/archive/1/469520/30/6420/threaded
http://www.securityfocus.com/bid/24146
http://www.vupen.com/english/advisories/2007/2071
https://bugs.gentoo.org/show_bug.cgi?id=174217
https://issues.rpath.com/browse/RPL-1311

Related CVE
CVE-2007-1673
unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
CVE-2007-1669
zoo decoder 2.10 (zoo-2.10), as used in multiple products including (1) Barracuda Spam Firewall 3.4 and later with virusdef before 2.0.6399, (2) Spam Firewall before 3.4 20070319 with virusdef before 2.0.6399o, and (3) AMaViS 2.4.1 and earlier, allow...
CVE-2002-1109
securetar, as used in AMaViS shell script 0.2.1 and earlier, allows users to cause a denial of service (CPU consumption) via a malformed TAR file, possibly via an incorrect file size parameter.
CVE-1999-1512
The AMaViS virus scanner 0.2.0-pre4 and earlier allows remote attackers to execute arbitrary commands as root via an infected mail message with shell metacharacters in the reply-to field.

Copyright 2019, cxsecurity.com

 

Back to Top