CVE-2006-4839
published 2006-11-01CVE-2006-4839: Sophos Anti-Virus 5.1 allows remote attackers to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large…
PriorityP416medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
3.00%
85.7th percentile
Sophos Anti-Virus 5.1 allows remote attackers to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sophos | sophos_anti-virus | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Sophos Anti-Virus 5.1 memory allocation (XFDB-29918 / SBV-15981)
vuldb·2026-04-26·CVSS 5.0
CVE-2006-4839 [MEDIUM] Sophos Anti-Virus 5.1 memory allocation (XFDB-29918 / SBV-15981)
A vulnerability classified as problematic has been found in Sophos Anti-Virus 5.1. Affected by this issue is some unknown functionality. This manipulation causes uncontrolled memory allocation.
This vulnerability is tracked as CVE-2006-4839. The attack is possible to be carried out remotely. Moreover, an exploit is present.
GHSA
GHSA-v7mp-j7pf-mj6w: Sophos Anti-Virus 5
ghsa_unreviewed·2022-05-01
CVE-2006-4839 [MEDIUM] GHSA-v7mp-j7pf-mj6w: Sophos Anti-Virus 5
Sophos Anti-Virus 5.1 allows remote attackers to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=438http://secunia.com/advisories/22635http://securitytracker.com/id?1017132http://www.securityfocus.com/bid/20816http://www.sophos.com/support/knowledgebase/article/7609.htmlhttp://www.vupen.com/english/advisories/2006/4239https://exchange.xforce.ibmcloud.com/vulnerabilities/29918http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=438http://secunia.com/advisories/22635http://securitytracker.com/id?1017132http://www.securityfocus.com/bid/20816http://www.sophos.com/support/knowledgebase/article/7609.htmlhttp://www.vupen.com/english/advisories/2006/4239https://exchange.xforce.ibmcloud.com/vulnerabilities/29918
2006-11-01
Published