CVE-2007-1591

medium

Description

VsapiNT.sys in the Scan Engine 8.0 for Trend Micro AntiVirus 14.10.1041, and other products, allows remote attackers to cause a denial of service (kernel fault and system crash) via a crafted UPX file with a certain field that triggers a divide-by-zero error.

References

http://www.vupen.com/english/advisories/2007/0959

http://www.securitytracker.com/id?1017768

http://www.securityfocus.com/archive/1/463007/100/100/threaded

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=488

http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034587

Details

Source: Mitre, NVD

Published: 2007-03-22

Updated: 2018-10-16

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 6.2

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: Medium