CVE-2007-1669

AMaViS < 2.4.1 - Denial of Service via ZOO Archive Direntry Structure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1669. PoCs published by Jean-SÃ©bastien.

AI-analyzed exploit summary This exploit generates a malformed ZOO archive file that triggers an infinite loop during decompression, leading to a Denial of Service (DoS). The PoC constructs a ZOO header and directory entry with specific values to exploit the vulnerability.

Description

zoo decoder 2.10 (zoo-2.10), as used in multiple products including (1) Barracuda Spam Firewall 3.4 and later with virusdef before 2.0.6399, (2) Spam Firewall before 3.4 20070319 with virusdef before 2.0.6399o, and (3) AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jean-SÃ©bastien · cdosmultiple

https://www.exploit-db.com/exploits/3851

View Code ZIP pw:eip

This exploit generates a malformed ZOO archive file that triggers an infinite loop during decompression, leading to a Denial of Service (DoS). The PoC constructs a ZOO header and directory entry with specific values to exploit the vulnerability.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Multiple vendors ZOO file decompression utilities (versions prior to the fix for CVE-2007-1669)

No auth needed

Prerequisites: Ability to deliver the malformed ZOO file to the target system

MITRE ATT&CK