5 results (0.016 seconds)

CVSS: 5.0EPSS: 12%CPEs: 35EXPL: 0

The virus detection engine in Sophos Anti-Virus before 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with modified headers, which might allow remote attackers to bypass malware detection. El motor de detección de virus en Sophos Anti-Virus anterior a 2.49.0 no procesa adecuadamente los archivos malformados (1) CAB, (2) LZH, y (3) RAR con cabeceras modificadas, lo cual podría permitir a atacantes remotos evitar la detección de código malicioso. • http://osvdb.org/37988 http://secunia.com/advisories/26726 http://www.securityfocus.com/bid/25574 http://www.sophos.com/support/knowledgebase/article/29146.html http://www.vupen.com/english/advisories/2007/3078 https://exchange.xforce.ibmcloud.com/vulnerabilities/36502 • CWE-20: Improper Input Validation •

CVSS: 5.0EPSS: 0%CPEs: 5EXPL: 0

Sophos Anti-Virus before 4.02, 4.5.x before 4.5.9, 4.6.x before 4.6.9, and 5.x before 5.1.4 allow remote attackers to hide arbitrary files and data via crafted ARJ archives, which are not properly scanned. • http://www.sophos.com/support/knowledgebase/article/3803.html http://www.vupen.com/english/advisories/2006/0347 https://exchange.xforce.ibmcloud.com/vulnerabilities/24345 •

CVSS: 7.5EPSS: 9%CPEs: 17EXPL: 0

Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage, MailMonitor, and other products, allows remote attackers to execute arbitrary code via a Visio file with a crafted sub record length. • http://marc.info/?l=bugtraq&m=112511873420953&w=2 http://secunia.com/advisories/16245 http://www.rem0te.com/public/images/sophos.pdf http://www.securityfocus.com/bid/14362 http://www.sophos.com/support/knowledgebase/article/3409.html https://exchange.xforce.ibmcloud.com/vulnerabilities/21608 •

CVSS: 5.0EPSS: 48%CPEs: 19EXPL: 1

Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value. Sophos Anti-Virus 5.0.1, con "Scan inside archive files" habilitado permite que atacantes remotos causen una denegación de servicio (agotamiento de CPU por bucle infinito) mediante un archivo Bzip2 con un valor largo en "Extra field length". • http://securitytracker.com/id?1014488 http://www.idefense.com/application/poi/display?id=283&type=vulnerabilities&flashstatus=true http://www.securityfocus.com/bid/14270 https://exchange.xforce.ibmcloud.com/vulnerabilities/21373 •

CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0

Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, which creates a race condition and may allow remote attackers to bypass virus protection if the file is executed before the antivirus starts on system reboot. • http://marc.info/?l=bugtraq&m=111566827411376&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/20519 •