CVE-2007-1792

2007-06-2717:30:00

flexera

web.nvd.nist.gov

cve-2007-1792

symantec

mail security

remote attack

denial of service

filter hub service

libdayzero.dll

vulnerability

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.4

Confidence

Low

EPSS

0.008

Percentile

81.7%

JSON

libdayzero.dll in the Filter Hub Service (filter-hub.exe) in Symantec Mail Security for SMTP before 5.0.1 Patch 181 and Mail Security Appliance before 5.0.0-36 allows remote attackers to cause a denial of service (crash) via a crafted executable attachment in an e-mail, involving the detection of “PE-Shield v0.2” and “ASPack v1.00-1.08.02”.

Affected configurations

Nvd

Node

symantecmail_security_8820_applianceRange≤5.0.0-35

AND

symantecmail_securityMatch5.0.0smtp

symantecmail_securityMatch5.0.1smtp

VendorProductVersionCPE
symantecmail_security_8820_appliance*cpe:2.3:h:symantec:mail_security_8820_appliance:*:*:*:*:*:*:*:*
symantecmail_security5.0.0cpe:2.3:a:symantec:mail_security:5.0.0:*:smtp:*:*:*:*:*
symantecmail_security5.0.1cpe:2.3:a:symantec:mail_security:5.0.1:*:smtp:*:*:*:*:*

Vendor	Product	Version	CPE
symantec	mail_security_8820_appliance	*	cpe:2.3:h:symantec:mail_security_8820_appliance::::::::
symantec	mail_security	5.0.0	cpe:2.3:a:symantec:mail_security:5.0.0::smtp:::::
symantec	mail_security	5.0.1	cpe:2.3:a:symantec:mail_security:5.0.1::smtp:::::