Unrated severityNVD Advisory· Published May 31, 2007· Updated Apr 23, 2026

CVE-2007-2967

Description

Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070522 allow remote attackers to cause a denial of service (file scanning infinite loop) via certain crafted (1) ARJ archives or (2) FSG packed files.

Affected products

F-Secure/Anti Virus10 versions
cpe:2.3:a:f-secure:f-secure_anti-virus:2005:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:f-secure:f-secure_anti-virus:2005:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:2006:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:2007:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:citrix_servers:*:*:*:*:*range: <=5.52
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:linux_gateways:*:*:*:*:*range: <=4.65
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:linux_servers:*:*:*:*:*range: <=4.65
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:mimesweeper:*:*:*:*:*range: <=5.61
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:ms_exchange:*:*:*:*:*range: <=6.40
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:windows_servers:*:*:*:*:*range: <=5.42
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:workstations:*:*:*:*:*range: <=5.44
F-Secure/F Secure Anti Virus Client Security
cpe:2.3:a:f-secure:f-secure_anti-virus_client_security:*:*:*:*:*:*:*:*
Range: <=6.03
F-Secure/F Secure Anti Virus Linux Client Security
cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:*:*:*:*:*:*:*:*
Range: <=5.30
F-Secure/F Secure Anti Virus Linux Server Security
cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:*:*:*:*:*:*:*:*
Range: <=5.30
F-Secure/Internet Security3 versions
cpe:2.3:a:f-secure:f-secure_internet_security:2005:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:f-secure:f-secure_internet_security:2005:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_internet_security:2006:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_internet_security:2007:*:*:*:*:*:*:*
F-Secure/F Secure Protection Service
cpe:2.3:a:f-secure:f-secure_protection_service:*:*:consumers:*:*:*:*:*
Range: <=6.40
F-Secure/Internet Gatekeeper2 versions
cpe:2.3:a:f-secure:internet_gatekeeper:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:f-secure:internet_gatekeeper:*:*:*:*:*:*:*:*range: <=6.60
- cpe:2.3:a:f-secure:internet_gatekeeper:*:*:linux:*:*:*:*:*range: <=2.16

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.f-secure.com/security/fsc-2007-3.shtmlnvdPatchVendor Advisory
secunia.com/advisories/25440nvdVendor Advisory
www.vupen.com/english/advisories/2007/1985nvdVendor Advisory
lists.grok.org.uk/pipermail/full-disclosure/2007-June/063714.htmlnvd
lists.grok.org.uk/pipermail/full-disclosure/2007-June/063715.htmlnvd
osvdb.org/36725nvd
osvdb.org/36726nvd
securitytracker.com/idnvd
www.nruns.com/security_advisory_fsecure_arj.phpnvd
www.nruns.com/security_advisory_fsecure_fsg.phpnvd
www.securityfocus.com/archive/1/470462/100/0/threadednvd
www.securityfocus.com/archive/1/470484/100/0/threadednvd
www.securitytracker.com/idnvd
www.securitytracker.com/idnvd
exchange.xforce.ibmcloud.com/vulnerabilities/34581nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.009
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000