CVE-2006-5645
published 2006-11-01CVE-2006-5645: Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11, when "Enabled scanning of archives"…
PriorityP427medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
17.38%
96.7th percentile
Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11, when "Enabled scanning of archives" is set, allows remote attackers to cause a denial of service (infinite loop) via a malformed RAR archive with an Archive Header section with the head_size and pack_size fields set to zero.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | anti-virus | — | — |
| sophos | endpoint_security | <= 6.04 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Trend Micro ServerProtect up to 5.58 RAR Archive Header resource management (EDB-2912 / XFDB-35572)
vuldb·2026-04-26·CVSS 5.0
CVE-2006-5645 [MEDIUM] Trend Micro ServerProtect up to 5.58 RAR Archive Header resource management (EDB-2912 / XFDB-35572)
A vulnerability classified as problematic was found in Trend Micro ServerProtect up to 5.58. This affects an unknown part of the component RAR Archive Header Handler. The manipulation results in improper resource management.
This vulnerability is known as CVE-2006-5645. It is possible to launch the attack remotely. Furthermore, an exploit is available.
A patch should be applied to remediate this issue.
VulDB
Sophos Anti-Virus up to 6.0.4 Petite Plugin Petite Archive resource management (EDB-2912 / BID-20816)
vuldb·2026-04-26·CVSS 5.0
CVE-2006-5645 [MEDIUM] Sophos Anti-Virus up to 6.0.4 Petite Plugin Petite Archive resource management (EDB-2912 / BID-20816)
A vulnerability marked as problematic has been reported in Sophos Anti-Virus up to 6.0.4. This vulnerability affects unknown code of the component Petite Plugin. Performing a manipulation as part of Petite Archive results in improper resource management.
This vulnerability was named CVE-2006-5645. The attack may be initiated remotely. In addition, an exploit is available.
It is suggested to upgrade the affected component.
VulDB
Sophos Anti-Virus up to 6.0.4 CHM Archive resource management (EDB-2912 / BID-20816)
vuldb·2026-04-26·CVSS 5.0
CVE-2006-5645 [MEDIUM] Sophos Anti-Virus up to 6.0.4 CHM Archive resource management (EDB-2912 / BID-20816)
A vulnerability labeled as problematic has been found in Sophos Anti-Virus up to 6.0.4. This affects an unknown part of the component CHM Archive Handler. Such manipulation leads to improper resource management.
This vulnerability is uniquely identified as CVE-2006-5645. The attack can be launched remotely. Moreover, an exploit is present.
The affected component should be upgraded.
VulDB
Sophos Anti-Virus up to 6.0.4 CHM Archive resource management (EDB-2912 / BID-20816)
vuldb·2026-04-26·CVSS 5.0
CVE-2006-5645 [MEDIUM] Sophos Anti-Virus up to 6.0.4 CHM Archive resource management (EDB-2912 / BID-20816)
A vulnerability identified as critical has been detected in Sophos Anti-Virus up to 6.0.4. Affected by this issue is some unknown functionality of the component CHM Archive Handler. This manipulation causes improper resource management.
This vulnerability is handled as CVE-2006-5645. The attack can be initiated remotely. Additionally, an exploit exists.
You should upgrade the affected component.
VulDB
Trend Micro OfficeScan up to 7.3 RAR Archive Header resource management (EDB-2912 / BID-20816)
vuldb·2026-04-26·CVSS 5.0
CVE-2006-5645 [MEDIUM] Trend Micro OfficeScan up to 7.3 RAR Archive Header resource management (EDB-2912 / BID-20816)
A vulnerability classified as problematic has been found in Trend Micro OfficeScan up to 7.3. Affected by this issue is some unknown functionality of the component RAR Archive Header Handler. The manipulation leads to improper resource management.
This vulnerability is traded as CVE-2006-5645. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
It is suggested to install a patch to address this issue.
VulDB
Sophos Anti-Virus up to 6.0.4 RAR Archive resource management (EDB-2912 / BID-20816)
vuldb·2026-04-26·CVSS 5.0
CVE-2006-5645 [MEDIUM] Sophos Anti-Virus up to 6.0.4 RAR Archive resource management (EDB-2912 / BID-20816)
A vulnerability categorized as problematic has been discovered in Sophos Anti-Virus up to 6.0.4. Affected by this vulnerability is an unknown functionality of the component RAR Archive Handler. The manipulation results in improper resource management.
This vulnerability is known as CVE-2006-5645. It is possible to launch the attack remotely. Furthermore, an exploit is available.
It is advisable to upgrade the affected component.
GHSA
GHSA-8fp6-957g-c524: Sophos Anti-Virus and Endpoint Security before 6
ghsa_unreviewed·2022-05-01
CVE-2006-5645 [MEDIUM] GHSA-8fp6-957g-c524: Sophos Anti-Virus and Endpoint Security before 6
Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11, when "Enabled scanning of archives" is set, allows remote attackers to cause a denial of service (infinite loop) via a malformed RAR archive with an Archive Header section with the head_size and pack_size fields set to zero.
No detection rules found.
No writeups or analysis indexed.
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=439http://secunia.com/advisories/22591http://securitytracker.com/id?1017132http://www.securityfocus.com/archive/1/474683/100/0/threadedhttp://www.securityfocus.com/bid/20816http://www.securitytracker.com/id?1018450http://www.sophos.com/support/knowledgebase/article/7609.htmlhttp://www.vupen.com/english/advisories/2006/4239http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=439http://secunia.com/advisories/22591http://securitytracker.com/id?1017132http://www.securityfocus.com/archive/1/474683/100/0/threadedhttp://www.securityfocus.com/bid/20816http://www.securitytracker.com/id?1018450http://www.sophos.com/support/knowledgebase/article/7609.htmlhttp://www.vupen.com/english/advisories/2006/4239
2006-11-01
Published