Vulnerability Details : CVE-2007-2650
The OLE2 parser in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service (resource consumption) via an OLE2 file with (1) a large property size or (2) a loop in the FAT file block chain that triggers an infinite loop, as demonstrated via a crafted DOC file.
Vulnerability category: Denial of service
Threat overview for CVE-2007-2650
Top countries where our scanners detected CVE-2007-2650
Top open port discovered on systems with this issue 5555
IPs affected by CVE-2007-2650 121
Threat actors abusing to this issue? Yes
Find out if you* are affected by CVE-2007-2650!
*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2007-2650
Probability of exploitation activity in the next 30 days: 0.99%
CVSS scores for CVE-2007-2650
|Base Score||Base Severity||CVSS Vector||Exploitability Score||Impact Score||Source|
CWE ids for CVE-2007-2650
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.Assigned by: firstname.lastname@example.org (Primary)
References for CVE-2007-2650
Third Party Advisory
Third Party Advisory;VDB Entry
Products affected by CVE-2007-2650