Panda Software Antivirus/Internet Security before 20070402 allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

An update has been issued on April 02 2007 to solve this vulnerability through the regular update mechanism.

• http://secunia.com/advisories/25152
• http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1670
• http://www.securityfocus.com/archive/1/archive/1/467646/100/0/threaded

---

Updated on 2015-03-25