CVE-2007-6060

Name of the Vulnerable Software and Affected Versions AhnLab Antivirus 3 Internet Security 2008 Platinum

Description The issue allows remote attackers to cause a denial of service (machine crash) and possibly execute arbitrary code via a ZIP file. This occurs when the "Filename length" field in a ZIP header has a value larger than the actual number of bytes in the filename, causing the software to append data to a filename string at an incorrect location.

Recommendations For AhnLab Antivirus 3 Internet Security 2008 Platinum, consider restricting the handling of ZIP files with potentially malformed headers to minimize the risk of exploitation. As a temporary workaround, avoid processing ZIP files from untrusted sources until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.