sophos software vulnerabilities
vulnerabilities.aspcode.net
Searching sophos software vulnerabilities
Sophos Small Business Suite 1.00 on Windows doe
Business
|
Sophos
|
Suite
|
Small
|
Sophos Small Business Suite 1.00 on Windows does not properly handle files whose names contain reserved MS-DOS device names such as (1) LPT1, (2) COM1, (3) AUX, (4) CON, or (5) PRN, which can allow malicious code to bypass detection when it is installed, copied, or executed.
Sophos Anti-Virus before 3.87.0, and Sophos Ant
Anti-Virus
|
before
|
Sophos
|
Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
Sophos Anti-Virus 3.78 allows remote attackers
Anti-Virus
|
Sophos
|
Sophos Anti-Virus 3.78 allows remote attackers to cause a denial of service (infinite loop) via a MIME header that is not properly terminated.
Sophos Anti-Virus 3.78 allows remote attackers
Anti-Virus
|
Sophos
|
Sophos Anti-Virus 3.78 allows remote attackers to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message.
Sophos Anti-Virus 5.0.1, with "Scan inside arch
Anti-Virus
|
Sophos
|
Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value.
Sophos Anti-Virus 3.93 does not check downloade
Anti-Virus
|
Sophos
|
Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, which creates a race condition and may allow remote attackers to bypass virus protection if the file is executed before the antivirus starts on system reboot.
Multiple interpretation error in unspecified ve
interpretation
|
unspecified
|
executable
|
malicious
|
detection
|
BitZipper
|
malformed
|
corrupted
|
specially
|
attackers
|
Antivirus
|
Multiple
|
versions
|
PowerZip
|
products
|
rejected
|
headers
|
central
|
crafted
|
opened
|
remote
|
Winrar
|
bypass
|
though
|
Sophos
|
allows
|
Winzip
|
error
|
virus
|
still
|
which
|
local
|
they
|
file
|
such
|
even
|
via
|
RAR
|
can
|
Multiple interpretation error in unspecified versions of Sophos Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper.
Multiple interpretation error in Sophos 3.91 wi
interpretation
|
Multiple
|
Sophos
|
error
|
Multiple interpretation error in Sophos 3.91 with the 2.28.4 engine allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a dangerous file type by applications on the end system, as demonstrated by a "triple headed" program that contains EXE, EML, and HTML content, aka the "magic byte bug."
Sophos Anti-Virus before 4.02, 4.5.x before 4.5
Anti-Virus
|
before
|
Sophos
|
Sophos Anti-Virus before 4.02, 4.5.x before 4.5.9, 4.6.x before 4.6.9, and 5.x before 5.1.4 allow remote attackers to hide arbitrary files and data via crafted ARJ archives, which are not properly scanned.
Multiple Sophos Anti-Virus products, including
Anti-Virus
|
including
|
products
|
Multiple
|
Windows
|
before
|
Sophos
|
Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x before 5.2.1 and 4.x before 4.05, when cabinet file inspection is enabled, allows remote attackers to execute arbitrary code via a CAB file with "invalid folder count values," which leads to heap corruption.
Sophos Anti-Virus 5.1 allows remote attackers t
Anti-Virus
|
attackers
|
service
|
denial
|
allows
|
Sophos
|
remote
|
cause
|
Sophos Anti-Virus 5.1 allows remote attackers to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.
Sophos Anti-Virus and Endpoint Security before
Anti-Virus
|
Security
|
Endpoint
|
before
|
Sophos
|
Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11, when "Enabled scanning of archives" is set, allows remote attackers to cause a denial of service (infinite loop) via a malformed RAR archive with an Archive Header section with the head_size and pack_size fields set to zero.
Heap-based buffer overflow in Sophos Anti-Virus
Anti-Virus
|
Heap-based
|
Endpoint
|
Security
|
overflow
|
before
|
buffer
|
Sophos
|
Heap-based buffer overflow in Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11, when archive scanning is enabled, allows remote attackers to trigger a denial of service (memory corruption) via a CHM file with an LZX decompression header that specifies a Window_size of 0.
Sophos Anti-Virus and Endpoint Security before
Anti-Virus
|
Security
|
Endpoint
|
before
|
Sophos
|
Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via a malformed CHM file with a large name length in the CHM chunk header, aka "CHM name length memory consumption vulnerability."
Multiple buffer overflows in Sophos Anti-Virus
Anti-Virus
|
overflows
|
Multiple
|
scanning
|
before
|
engine
|
buffer
|
Sophos
|
Multiple buffer overflows in Sophos Anti-Virus scanning engine before 2.40 allow remote attackers to execute arbitrary code via (1) a SIT archive with a long filename that is not null-terminated, which triggers a heap-based overflow in veex.dll due to improper length calculation, and (2) a CPIO archive, with a long filename that is not null-terminated, which triggers a stack-based overflow in veex.dll.
Cross-site scripting (XSS) vulnerability in Sop
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in Sophos Anti-Virus for Windows 6.x before 6.5.8 and 7.x before 7.0.1 allows remote attackers to inject arbitrary web script or HTML via an archive with a file that matches a virus signature and has a crafted filename that is not properly handled by the print function in SavMain.exe.
Sophos Anti-Virus for Unix/Linux before 2.48.0
Unix/Linux
|
Anti-Virus
|
before
|
Sophos
|
Sophos Anti-Virus for Unix/Linux before 2.48.0 allows remote attackers to cause a denial of service (infinite loop) via a malformed BZip file that results in the creation of multiple Engine temporary files (aka a "BZip bomb").
Sophos Anti-Virus for Windows and for Unix/Linu
Anti-Virus
|
Unix/Linux
|
Windows
|
before
|
Sophos
|
Sophos Anti-Virus for Windows and for Unix/Linux before 2.48.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted UPX packed file, resulting from an "integer cast around". NOTE: as of Tuesday, August 28, 2007, the vendor says this is a DoS and the researcher says this allows code execution, but the researcher is reliable.
The virus detection engine in Sophos Anti-Virus
Anti-Virus
|
detection
|
before
|
Sophos
|
engine
|
virus
|
The virus detection engine in Sophos Anti-Virus before 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with modified headers, which might allow remote attackers to bypass malware detection.
Software vulnerabilities results 1 to 20 of 20
Page:
1
2
►