1 results (0.003 seconds)
CVSS: 5.6EPSS: 0%CPEs: 2EXPL: 0
CVSS: 5.6EPSS: 0%CPEs: 2EXPL: 0CVE-2014-1213 – Sophos Anti-Virus Denial of Service
https://notcve.org/view.php?id=CVE-2014-1213
02 Feb 2014 — Sophos Anti-Virus engine (SAVi) before 3.50.1, as used in VDL 4.97G 9.7.x before 9.7.9, 10.0.x before 10.0.11, and 10.3.x before 10.3.1 does not set an ACL for certain global and session objects, which allows local users to bypass anti-virus protection, cause a denial of service (resource consumption, CPU consumption, and eventual crash) or spoof "ready for update" messages by performing certain operations on mutexes or events including (1) DataUpdateRequest, (2) MmfMutexSAV-****, (3) MmfMutexSAV-Info, (4) ... • http://osvdb.org/102762 • CWE-264: Permissions, Privileges, and Access Controls •