CVSS: 7.5EPSS: 9%CPEs: 17EXPL: 0CVE-2005-2768
https://notcve.org/view.php?id=CVE-2005-2768
Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage, MailMonitor, and other products, allows remote attackers to execute arbitrary code via a Visio file with a crafted sub record length. • http://marc.info/?l=bugtraq&m=112511873420953&w=2 http://secunia.com/advisories/16245 http://www.rem0te.com/public/images/sophos.pdf http://www.securityfocus.com/bid/14362 http://www.sophos.com/support/knowledgebase/article/3409.html https://exchange.xforce.ibmcloud.com/vulnerabilities/21608 •
CVSS: 5.0EPSS: 48%CPEs: 19EXPL: 1CVE-2005-1530
https://notcve.org/view.php?id=CVE-2005-1530
Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value. Sophos Anti-Virus 5.0.1, con "Scan inside archive files" habilitado permite que atacantes remotos causen una denegación de servicio (agotamiento de CPU por bucle infinito) mediante un archivo Bzip2 con un valor largo en "Extra field length". • http://securitytracker.com/id?1014488 http://www.idefense.com/application/poi/display?id=283&type=vulnerabilities&flashstatus=true http://www.securityfocus.com/bid/14270 https://exchange.xforce.ibmcloud.com/vulnerabilities/21373 •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0CVE-2005-1551
https://notcve.org/view.php?id=CVE-2005-1551
Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, which creates a race condition and may allow remote attackers to bypass virus protection if the file is executed before the antivirus starts on system reboot. • http://marc.info/?l=bugtraq&m=111566827411376&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/20519 •
CVSS: 5.0EPSS: 1%CPEs: 2EXPL: 0CVE-2004-2075
https://notcve.org/view.php?id=CVE-2004-2075
Sophos Anti-Virus 3.78 allows remote attackers to cause a denial of service (infinite loop) via a MIME header that is not properly terminated. • http://secunia.com/advisories/10855 http://securitytracker.com/id?1009042 http://www.osvdb.org/3925 http://www.securityfocus.com/bid/9648 http://www.sophos.com/support/news/#mime-378 https://exchange.xforce.ibmcloud.com/vulnerabilities/15191 •
CVSS: 7.5EPSS: 2%CPEs: 47EXPL: 2CVE-2004-1096 – Multiple AntiVirus - '.zip' Detection Bypass
https://notcve.org/view.php?id=CVE-2004-1096
Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system. El módulo Perl Archive::Zip anterior a 1.14, cuando se usa en programas antivirus como amavisd-new, permite a atacantes remotos saltarse la protección del antivirus mediante un ficheros comprimido con cabeceras globales y locales establecido a cero, lo que no impide que el fichero comprimido sea abierto en un sistema objetivo. • https://www.exploit-db.com/exploits/629 http://secunia.com/advisories/13038 http://www.gentoo.org/security/en/glsa/glsa-200410-31.xml http://www.idefense.com/application/poi/display?id=153&type=vulnerabilities&flashstatus=true http://www.kb.cert.org/vuls/id/492545 http://www.mandriva.com/security/advisories?name=MDKSA-2004:118 http://www.securityfocus.com/bid/11448 https://exchange.xforce.ibmcloud.com/vulnerabilities/17761 •