CVE-2008-6904

3 documents3 sources
Severity
10.0CRITICAL
EPSS
6.0%
top 9.35%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Sophos Anti-virus
Timeline
PublishedAug 6
Latest updateMay 17

Description

Multiple unspecified vulnerabilities in Sophos SAVScan 4.33.0 for Linux, and possibly other products and versions, allow remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via crafted files that have been packed with (1) armadillo, (2) asprotect, or (3) asprotectSKE.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDsophos/anti-virus5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-cg67-q7c2-xc63: Multiple unspecified vulnerabilities in Sophos SAVScan 42022-05-17
CVEList
CVE-2008-6904: Multiple unspecified vulnerabilities in Sophos SAVScan 42009-08-06
CVE-2008-6904 (CRITICAL CVSS 10) | Multiple unspecified vulnerabilitie | cvebase.io