CVSS: 7.5EPSS: 1%CPEs: 35EXPL: 0CVE-2007-4787
https://notcve.org/view.php?id=CVE-2007-4787
10 Sep 2007 — The virus detection engine in Sophos Anti-Virus before 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with modified headers, which might allow remote attackers to bypass malware detection. El motor de detección de virus en Sophos Anti-Virus anterior a 2.49.0 no procesa adecuadamente los archivos malformados (1) CAB, (2) LZH, y (3) RAR con cabeceras modificadas, lo cual podría permitir a atacantes remotos evitar la detección de código malicioso. • http://osvdb.org/37988 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 12%CPEs: 1EXPL: 0CVE-2006-6335 – Sophos Anti-Virus SIT Archive Parsing Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2006-6335
12 Dec 2006 — Multiple buffer overflows in Sophos Anti-Virus scanning engine before 2.40 allow remote attackers to execute arbitrary code via (1) a SIT archive with a long filename that is not null-terminated, which triggers a heap-based overflow in veex.dll due to improper length calculation, and (2) a CPIO archive, with a long filename that is not null-terminated, which triggers a stack-based overflow in veex.dll. Múltiples desbordamientos de búfer en el motor de escaneo Sophos Anti-Virus en versiones anteriores a la 2... • http://secunia.com/advisories/23325 •
CVSS: 9.8EPSS: 42%CPEs: 2EXPL: 0CVE-2006-0994 – Sophos Anti-Virus CAB Unpacking Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2006-0994
08 May 2006 — Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x before 5.2.1 and 4.x before 4.05, when cabinet file inspection is enabled, allows remote attackers to execute arbitrary code via a CAB file with "invalid folder count values," which leads to heap corruption. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sophos AntiVirus. Authentication is not required to exploit this vulnerability. The specific flaw exists within the unpacking of M... • http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/045897.html •
CVSS: 9.1EPSS: 3%CPEs: 5EXPL: 0CVE-2005-4680
https://notcve.org/view.php?id=CVE-2005-4680
31 Dec 2005 — Sophos Anti-Virus before 4.02, 4.5.x before 4.5.9, 4.6.x before 4.6.9, and 5.x before 5.1.4 allow remote attackers to hide arbitrary files and data via crafted ARJ archives, which are not properly scanned. • http://www.sophos.com/support/knowledgebase/article/3803.html •
CVSS: 8.1EPSS: 3%CPEs: 1EXPL: 0CVE-2005-3382
https://notcve.org/view.php?id=CVE-2005-3382
29 Oct 2005 — Multiple interpretation error in Sophos 3.91 with the 2.28.4 engine allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a dangerous file type by applications on the end system, as demonstrated by a "triple headed" program that contains EXE, EML, and HTML content, aka the "magic byte bug." • http://marc.info/?l=bugtraq&m=113026417802703&w=2 •
CVSS: 8.4EPSS: 12%CPEs: 17EXPL: 0CVE-2005-2768
https://notcve.org/view.php?id=CVE-2005-2768
02 Sep 2005 — Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage, MailMonitor, and other products, allows remote attackers to execute arbitrary code via a Visio file with a crafted sub record length. • http://marc.info/?l=bugtraq&m=112511873420953&w=2 •
CVSS: 7.5EPSS: 6%CPEs: 19EXPL: 1CVE-2005-1530
https://notcve.org/view.php?id=CVE-2005-1530
19 Jul 2005 — Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value. Sophos Anti-Virus 5.0.1, con "Scan inside archive files" habilitado permite que atacantes remotos causen una denegación de servicio (agotamiento de CPU por bucle infinito) mediante un archivo Bzip2 con un valor largo en "Extra field length". • http://securitytracker.com/id?1014488 •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2005-1551
https://notcve.org/view.php?id=CVE-2005-1551
14 May 2005 — Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, which creates a race condition and may allow remote attackers to bypass virus protection if the file is executed before the antivirus starts on system reboot. • http://marc.info/?l=bugtraq&m=111566827411376&w=2 •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0CVE-2004-2075
https://notcve.org/view.php?id=CVE-2004-2075
31 Dec 2004 — Sophos Anti-Virus 3.78 allows remote attackers to cause a denial of service (infinite loop) via a MIME header that is not properly terminated. • http://secunia.com/advisories/10855 •
CVSS: 7.5EPSS: 20%CPEs: 47EXPL: 2CVE-2004-1096 – Multiple AntiVirus - '.zip' Detection Bypass
https://notcve.org/view.php?id=CVE-2004-1096
01 Dec 2004 — Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system. El módulo Perl Archive::Zip anterior a 1.14, cuando se usa en programas antivirus como amavisd-new, permite a atacantes remotos saltarse la protección del antivirus mediante un ficheros comprimido con cabeceras glob... • https://www.exploit-db.com/exploits/629 •