KLA10336Multiple vulnerabilities in Sophos Web Appliance

2014-04-11T00:00:00
ID KLA10336
Type kaspersky
Reporter Kaspersky Lab
Modified 2018-07-05T00:00:00

Description

CVSS:

8.5

Detect date:

04/11/2014

Severity:

Critical

Description:

Multiple critical vulnerabilities have been found in Sophos Web Appliance. Malicious users can exploit these vulnerabilities to execute arbitrary commands or change admin password.
Below is a complete list of vulnerabilities

Affected products:

Sophos Web Appliance versions 3.8.1.1 and earlier

Solution:

Update to latest version

Impacts:

ACE

Related products:

Sophos Web Appliance

CVE-IDS:

CVE-2014-2849
CVE-2014-2850