Vulnerability Details : CVE-2007-1792
libdayzero.dll in the Filter Hub Service (filter-hub.exe) in Symantec Mail Security for SMTP before 5.0.1 Patch 181 and Mail Security Appliance before 5.0.0-36 allows remote attackers to cause a denial of service (crash) via a crafted executable attachment in an e-mail, involving the detection of "PE-Shield v0.2" and "ASPack v1.00-1.08.02".
Vulnerability category: Denial of service
Products affected by CVE-2007-1792
- cpe:2.3:a:symantec:mail_security:5.0.1:*:smtp:*:*:*:*:*When used together with: Symantec » Mail Security 8820 Appliance
- cpe:2.3:a:symantec:mail_security:5.0.0:*:smtp:*:*:*:*:*When used together with: Symantec » Mail Security 8820 Appliance
Exploit prediction scoring system (EPSS) score for CVE-2007-1792
2.02%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 82 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-1792
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
References for CVE-2007-1792
-
http://osvdb.org/36110
-
http://securityresponse.symantec.com/avcenter/security/Content/2007.06.26.html
Patch
-
http://www.vupen.com/english/advisories/2007/2335
-
http://www.securitytracker.com/id?1018301
-
http://secunia.com/advisories/24632
Patch;Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/35105
-
http://secunia.com/secunia_research/2007-48/advisory/
Vendor Advisory
-
http://www.securityfocus.com/bid/24625
-
http://www.securityfocus.com/archive/1/472440/100/0/threaded
Jump to