CVE-2008-6904
Severity Score
10.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple unspecified vulnerabilities in Sophos SAVScan 4.33.0 for Linux, and possibly other products and versions, allow remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via crafted files that have been packed with (1) armadillo, (2) asprotect, or (3) asprotectSKE.
Vulnerabilidad sin especificar en Sophos SAVScan v4.33.0 de Linux, y probablemente otros productos y versiones, permiten a atacantes remotos causar una denegación de servicio (falta de segmentación) y probablemente ejecutar código a su elección a través de archivos manipulados que han sido empaquetados con (1)armadillo, (2) asprotect, o (3) asprotectSKE.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-08-05 CVE Reserved
- 2009-08-06 CVE Published
- 2024-08-07 CVE Updated
- 2024-08-19 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://marc.info/?l=bugtraq&m=122893252316489&w=2 | Mailing List | |
| http://www.ivizsecurity.com/security-advisory-iviz-sr-08015.html | X_refsource_misc | |
| http://www.securityfocus.com/bid/32748 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/52443 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.sophos.com/support/knowledgebase/article/50611.html | 2017-08-17 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Sophos Search vendor "Sophos" | Anti-virus Search vendor "Sophos" for product "Anti-virus" | 4.7.18 Search vendor "Sophos" for product "Anti-virus" and version "4.7.18" | windows-nt |
Affected
| ||||||
| Sophos Search vendor "Sophos" | Anti-virus Search vendor "Sophos" for product "Anti-virus" | 4.7.18 Search vendor "Sophos" for product "Anti-virus" and version "4.7.18" | windows_9x |
Affected
| ||||||
| Sophos Search vendor "Sophos" | Anti-virus Search vendor "Sophos" for product "Anti-virus" | 4.9.18 Search vendor "Sophos" for product "Anti-virus" and version "4.9.18" | os_x |
Affected
| ||||||
| Sophos Search vendor "Sophos" | Anti-virus Search vendor "Sophos" for product "Anti-virus" | 4.37.0 Search vendor "Sophos" for product "Anti-virus" and version "4.37.0" | netware |
Affected
| ||||||
| Sophos Search vendor "Sophos" | Anti-virus Search vendor "Sophos" for product "Anti-virus" | 6.4.5 Search vendor "Sophos" for product "Anti-virus" and version "6.4.5" | linux |
Affected
| ||||||
| Sophos Search vendor "Sophos" | Anti-virus Search vendor "Sophos" for product "Anti-virus" | 7.0.5 Search vendor "Sophos" for product "Anti-virus" and version "7.0.5" | unix |
Affected
| ||||||
| Sophos Search vendor "Sophos" | Anti-virus7.6.3 Search vendor "Sophos" for product "Anti-virus7.6.3" | * | windows |
Affected
| ||||||