CVSS: 8.8EPSS: 15%CPEs: 16EXPL: 1CVE-2006-5647 – Sophos AntiVirus - '.CHM' Chunk Name Length Memory Corruption (PoC)
https://notcve.org/view.php?id=CVE-2006-5647
01 Nov 2006 — Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via a malformed CHM file with a large name length in the CHM chunk header, aka "CHM name length memory consumption vulnerability." Sophos Anti-Virus y Endpoint Security versiones anteriores a 6.0.5, Anti-Virus para Linux anteriores a 5.0.10, y otras plataformas anteriores a 4.11 p... • https://www.exploit-db.com/exploits/2911 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.4EPSS: 12%CPEs: 17EXPL: 0CVE-2005-2768
https://notcve.org/view.php?id=CVE-2005-2768
02 Sep 2005 — Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage, MailMonitor, and other products, allows remote attackers to execute arbitrary code via a Visio file with a crafted sub record length. • http://marc.info/?l=bugtraq&m=112511873420953&w=2 •