CVE-2007-0445 - OpenCVE

Heap-based buffer overflow in the arj.ppl module in the OnDemand Scanner in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote attackers to execute arbitrary code via crafted ARJ archives.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Kaspersky Lab	Kaspersky Anti-virus Kaspersky Internet Security

Configuration 1 [-]

OR	cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:6.0::file_servers:::::
	cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:6.0::windows_workstation:::::
	cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:6.0::workstations:::::
	cpe:2.3:a:kaspersky_lab:kaspersky_internet_security::maintenance_pack_2::::::*

No data.

References

Link	Providers
http://secunia.com/advisories/24778
http://www.kaspersky.com/technews?id=203038693
http://www.kaspersky.com/technews?id=203038694
http://www.securityfocus.com/archive/1/464878/100/0/threaded
http://www.securityfocus.com/bid/23346
http://www.securitytracker.com/id?1017882
http://www.securitytracker.com/id?1017883
http://www.vupen.com/english/advisories/2007/1268
http://www.zerodayinitiative.com/advisories/ZDI-07-013.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/33489

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-04-06T00:00:00

Updated: 2024-08-07T12:19:30.325Z

Reserved: 2007-01-23T00:00:00

Link: CVE-2007-0445

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-04-06T00:19:00.000

Modified: 2018-10-16T16:32:37.340

Link: CVE-2007-0445

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-04-04T00:00:00", "descriptions": [{"lang": "en", "value": "Heap-based buffer overflow in the arj.ppl module in the OnDemand Scanner in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote attackers to execute arbitrary code via crafted ARJ archives."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-013.html"}, {"name": "24778", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/24778"}, {"name": "1017882", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1017882"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.kaspersky.com/technews?id=203038694"}, {"name": "ADV-2007-1268", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/1268"}, {"name": "20070405 ZDI-07-013: Kaspersky AntiVirus Engine ARJ Archive Parsing Heap Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/464878/100/0/threaded"}, {"name": "kaspersky-arj-bo(33489)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33489"}, {"name": "23346", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/23346"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.kaspersky.com/technews?id=203038693"}, {"name": "1017883", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1017883"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-0445", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Heap-based buffer overflow in the arj.ppl module in the OnDemand Scanner in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote attackers to execute arbitrary code via crafted ARJ archives."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.zerodayinitiative.com/advisories/ZDI-07-013.html", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-013.html"}, {"name": "24778", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/24778"}, {"name": "1017882", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1017882"}, {"name": "http://www.kaspersky.com/technews?id=203038694", "refsource": "CONFIRM", "url": "http://www.kaspersky.com/technews?id=203038694"}, {"name": "ADV-2007-1268", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/1268"}, {"name": "20070405 ZDI-07-013: Kaspersky AntiVirus Engine ARJ Archive Parsing Heap Overflow Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/464878/100/0/threaded"}, {"name": "kaspersky-arj-bo(33489)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33489"}, {"name": "23346", "refsource": "BID", "url": "http://www.securityfocus.com/bid/23346"}, {"name": "http://www.kaspersky.com/technews?id=203038693", "refsource": "CONFIRM", "url": "http://www.kaspersky.com/technews?id=203038693"}, {"name": "1017883", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1017883"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T12:19:30.325Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-013.html"}, {"name": "24778", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/24778"}, {"name": "1017882", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1017882"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.kaspersky.com/technews?id=203038694"}, {"name": "ADV-2007-1268", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/1268"}, {"name": "20070405 ZDI-07-013: Kaspersky AntiVirus Engine ARJ Archive Parsing Heap Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/464878/100/0/threaded"}, {"name": "kaspersky-arj-bo(33489)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33489"}, {"name": "23346", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/23346"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.kaspersky.com/technews?id=203038693"}, {"name": "1017883", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1017883"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-0445", "datePublished": "2007-04-06T00:00:00", "dateReserved": "2007-01-23T00:00:00", "dateUpdated": "2024-08-07T12:19:30.325Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:6.0:*:file_servers:*:*:*:*:*", "matchCriteriaId": "3F7ABC05-BD60-4345-898C-FF1045001013", "vulnerable": true}, {"criteria": "cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:6.0:*:windows_workstation:*:*:*:*:*", "matchCriteriaId": "4FBBEA6A-F02E-4B35-B807-5E5C05EF25A4", "vulnerable": true}, {"criteria": "cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:6.0:*:workstations:*:*:*:*:*", "matchCriteriaId": "53049BB1-486B-4C01-A3F5-F900FAD33024", "vulnerable": true}, {"criteria": "cpe:2.3:a:kaspersky_lab:kaspersky_internet_security:*:maintenance_pack_2:*:*:*:*:*:*", "matchCriteriaId": "21B7A75C-61EF-415B-A4DC-90527AFC39C6", "versionEndIncluding": "6.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Heap-based buffer overflow in the arj.ppl module in the OnDemand Scanner in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote attackers to execute arbitrary code via crafted ARJ archives."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en pila en el m\u00f3dulo arj.ppl en OnDemand Scanner en Kaspersky Anti-Virus, Anti-Virus para estaciones de trabajo, y Anti-Virus para File Servers 6.0, e Internet Security 6.0 anterior a Maintenance Pack 2 construccion 6.0.2.614 permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de archivos ARJ."}], "id": "CVE-2007-0445", "lastModified": "2018-10-16T16:32:37.340", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-04-06T00:19:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/24778"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.kaspersky.com/technews?id=203038693"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.kaspersky.com/technews?id=203038694"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/464878/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/23346"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1017882"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1017883"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/1268"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-013.html"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33489"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}