CVE-2007-2966

Published: May 31, 2007Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Buffer overflow in the LHA decompression component in F-Secure anti-virus products for Microsoft Windows and Linux before 20070529 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted LHA archive, related to an integer wrap, a similar issue to CVE-2006-4335.

Affected (19)

Products: F Secure: F Secure Anti Virus, F Secure Anti Virus Client Security, F Secure Anti Virus Linux Client Security, F Secure Anti Virus Linux Server Security, F Secure Internet Security, F Secure Protection Service, Internet Gatekeeper

F Secure

7 products

F Secure Anti Virus

F Secure Anti Virus Client Security

F Secure Anti Virus Linux Client Security

F Secure Anti Virus Linux Server Security

F Secure Internet Security

F Secure Protection Service

Internet Gatekeeper

Configuration A

19 vulnerable

Vulnerable Software	Affected Versions
F Secure F Secure Anti Virus	Up to 5.52
F Secure F Secure Anti Virus	Up to 4.65
F Secure F Secure Anti Virus	Up to 4.65
F Secure F Secure Anti Virus	Up to 5.61
F Secure F Secure Anti Virus	Up to 6.40
F Secure F Secure Anti Virus	Up to 5.42
F Secure F Secure Anti Virus	Up to 5.44
F Secure F Secure Anti Virus	Version 2005
F Secure F Secure Anti Virus	Version 2006
F Secure F Secure Anti Virus	Version 2007
F Secure F Secure Anti Virus Client Security	Up to 6.03
F Secure F Secure Anti Virus Linux Client Security	Up to 5.30
F Secure F Secure Anti Virus Linux Server Security	Up to 5.30
F Secure F Secure Internet Security	Version 2005
F Secure F Secure Internet Security	Version 2006
F Secure F Secure Internet Security	Version 2007
F Secure F Secure Protection Service	Up to 6.40
F Secure Internet Gatekeeper	Up to 6.60
F Secure Internet Gatekeeper	Up to 2.16