CVE-2008-6903

Severity Score

7.1

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Sophos Anti-Virus for Windows before 7.6.3, Anti-Virus for Windows NT/9x before 4.7.18, Anti-Virus for OS X before 4.9.18, Anti-Virus for Linux before 6.4.5, Anti-Virus for UNIX before 7.0.5, Anti-Virus for Unix and Netware before 4.37.0, Sophos EM Library, and Sophos small business solutions, when CAB archive scanning is enabled, allows remote attackers to cause a denial of service (segmentation fault) via a "fuzzed" CAB archive file, as demonstrated by the OUSPG PROTOS GENOME test suite for Archive Formats.

Sophos Anti-Virus para Windows anteriores a v7.6.3, Anti-Virus para Windows NT/9x anteriores a v.4.7.18, Anti-Virus para OS X anteriores a v.4.9.18, Anti-Virus para Linux anteriores a v.6.4.5, Anti-Virus para UNIX anteriores a v7.0.5, Anti-Virus para Unix y Netware anteriores a v.4.37.0, Sophos EM Library, y Sophos small business solutions, cuando el archivo escaneado CAB está activo, permite a atacantes remotos causar una denegación de servicio (falta de segmentación) a través del fichero "fuzzed" CAB, como se ha demostrado mediante la suite para el testeo de formatos de archivo PROTOS GENOME.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2009-08-05 CVE Reserved
2009-08-06 CVE Published
2024-08-07 CVE Updated
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-399: Resource Management Errors

CAPEC

References (9)

URL	Tag	Source
http://marc.info/?l=bugtraq&m=122893252316489&w=2	Mailing List
http://osvdb.org/50863	Vdb Entry
http://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html	X_refsource_misc
http://www.securityfocus.com/bid/32748	Vdb Entry

URL	Date	SRC

URL	Date	SRC
http://www.ivizsecurity.com/security-advisory-iviz-sr-08015.html	2009-08-19
http://www.securitytracker.com/id?1021476	2009-08-19
http://www.sophos.com/support/knowledgebase/article/50611.html	2009-08-19

URL	Date	SRC
http://secunia.com/advisories/33177	2009-08-19
http://www.vupen.com/english/advisories/2008/3458	2009-08-19

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Sophos Search vendor "Sophos"		Anti-virus Search vendor "Sophos" for product "Anti-virus"				4.7.18 Search vendor "Sophos" for product "Anti-virus" and version "4.7.18"		windows-nt		Affected
Sophos Search vendor "Sophos"		Anti-virus Search vendor "Sophos" for product "Anti-virus"				4.7.18 Search vendor "Sophos" for product "Anti-virus" and version "4.7.18"		windows_9x		Affected
Sophos Search vendor "Sophos"		Anti-virus Search vendor "Sophos" for product "Anti-virus"				4.9.18 Search vendor "Sophos" for product "Anti-virus" and version "4.9.18"		os_x		Affected
Sophos Search vendor "Sophos"		Anti-virus Search vendor "Sophos" for product "Anti-virus"				4.37.0 Search vendor "Sophos" for product "Anti-virus" and version "4.37.0"		netware		Affected
Sophos Search vendor "Sophos"		Anti-virus Search vendor "Sophos" for product "Anti-virus"				6.4.5 Search vendor "Sophos" for product "Anti-virus" and version "6.4.5"		linux		Affected
Sophos Search vendor "Sophos"		Anti-virus Search vendor "Sophos" for product "Anti-virus"				7.0.5 Search vendor "Sophos" for product "Anti-virus" and version "7.0.5"		unix		Affected
Sophos Search vendor "Sophos"		Anti-virus7.6.3 Search vendor "Sophos" for product "Anti-virus7.6.3"				*		windows		Affected