Sophos Anti-virus Security Vulnerabilities and Issues — Sophos Anti-virus CVE List

Lucene search

SophosSophos Anti-virus

4 matches found

CVE•added 2006/12/12 8:28 p.m.•38 views

CVE-2006-6335

Multiple buffer overflows in Sophos Anti-Virus scanning engine before 2.40 allow remote attackers to execute arbitrary code via (1) a SIT archive with a long filename that is not null-terminated, which triggers a heap-based overflow in veex.dll due to improper length calculation, and (2) a CPIO arc...

10CVSS8AI score0.12858EPSS

CVE•added 2006/11/01 3:7 p.m.•37 views

CVE-2006-4839

Sophos Anti-Virus 5.1 allows remote attackers to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.

5CVSS6.6AI score0.01917EPSS

CVE•added 2006/05/10 10:2 a.m.•33 views

CVE-2006-0994

Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x before 5.2.1 and 4.x before 4.05, when cabinet file inspection is enabled, allows remote attackers to execute arbitrary code via a CAB file with "invalid folder count values," which leads to heap corruption.

7.5CVSS7.8AI score0.42705EPSS

CVE•added 2006/02/01 2:0 a.m.•30 views

CVE-2005-4680

Sophos Anti-Virus before 4.02, 4.5.x before 4.5.9, 4.6.x before 4.6.9, and 5.x before 5.1.4 allow remote attackers to hide arbitrary files and data via crafted ARJ archives, which are not properly scanned.

5CVSS7.2AI score0.03191EPSS