cbcvebase.

Sophos Anti-Virus vulnerabilities

33 known vulnerabilities affecting sophos/sophos_anti-virus.

Total CVEs
33
CISA KEV
0
Public exploits
7
Exploited in wild
1
Severity breakdown
CRITICAL1HIGH9MEDIUM23

Vulnerabilities

Page 2 of 2
CVE-2006-6335P3CRITICALCVSS 10.0≤ 2.32006-12-12
CVE-2006-6335 [CRITICAL] CVE-2006-6335: Multiple buffer overflows in Sophos Anti-Virus scanning engine before 2.40 allow remote attackers to Multiple buffer overflows in Sophos Anti-Virus scanning engine before 2.40 allow remote attackers to execute arbitrary code via (1) a SIT archive with a long filename that is not null-terminated, which triggers a heap-based overflow in veex.dll due to improper length calculation, and (2) a CPIO archive, with a long filename that is not null-terminated, whic
nvd
CVE-2012-1450P3MEDIUMCVSS 4.3v4.61.02012-03-21
CVE-2012-1450 [MEDIUM] CWE-264 CVE-2012-1450: The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Sophos Anti-Virus 4.61.0, and Ikarus Virus Uti The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Sophos Anti-Virus 4.61.0, and Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0 allows remote attackers to bypass malware detection via a CAB file with a modified reserved3 field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error oc
nvd
CVE-2012-1458P3MEDIUMCVSS 4.3v4.61.02012-03-21
CVE-2012-1458 [MEDIUM] CWE-264 CVE-2012-1458: The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote attackers The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CHM parser imple
nvd
CVE-2005-2768P3HIGHCVSS 7.5v3.4.6v3.78+15 more2005-09-02
CVE-2005-2768 [HIGH] CVE-2005-2768: Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage, MailMonitor, and other products, allows remote attackers to execute arbitrary code via a Visio file with a crafted sub record length.
nvd
CVE-2005-4680P4MEDIUMCVSS 5.0fixed in 4.02≥ 4.5.0, < 4.5.9+3 more2005-12-31
CVE-2005-4680 [MEDIUM] CVE-2005-4680: Sophos Anti-Virus before 4.02, 4.5.x before 4.5.9, 4.6.x before 4.6.9, and 5.x before 5.1.4 allow re Sophos Anti-Virus before 4.02, 4.5.x before 4.5.9, 4.6.x before 4.6.9, and 5.x before 5.1.4 allow remote attackers to hide arbitrary files and data via crafted ARJ archives, which are not properly scanned.
nvd
CVE-2007-4787P4MEDIUMCVSS 5.0v3.4.6v3.78+32 more2007-09-10
CVE-2007-4787 [MEDIUM] CWE-20 CVE-2007-4787: The virus detection engine in Sophos Anti-Virus before 2.49.0 does not properly process malformed (1 The virus detection engine in Sophos Anti-Virus before 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with modified headers, which might allow remote attackers to bypass malware detection.
nvd
CVE-2004-2088P4MEDIUMCVSS 5.0v3.4.6v3.782004-02-12
CVE-2004-2088 [MEDIUM] CVE-2004-2088: Sophos Anti-Virus 3.78 allows remote attackers to bypass virus scanning by using a qmail generated D Sophos Anti-Virus 3.78 allows remote attackers to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message.
nvd
CVE-2012-1438P4MEDIUMCVSS 4.3v4.61.02012-03-21
CVE-2012-1438 [MEDIUM] CWE-264 CVE-2012-1438: The Microsoft Office file parser in Comodo Antivirus 7425 and Sophos Anti-Virus 4.61.0 allows remote The Microsoft Office file parser in Comodo Antivirus 7425 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via an Office file with a ustar character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in dif
nvd
CVE-2005-1551P4MEDIUMCVSS 5.1v3.932005-05-14
CVE-2005-1551 [MEDIUM] CVE-2005-1551: Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, which creates a race condition and may allow remote attackers to bypass virus protection if the file is executed before the antivirus starts on system reboot.
nvd
CVE-2005-1530P4MEDIUMCVSS 5.0v3.4.6v3.78+12 more2005-07-19
CVE-2005-1530 [MEDIUM] CVE-2005-1530: Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote attackers to cause Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value.
nvd
CVE-2005-3382P4MEDIUMCVSS 5.0v3.91_engine_2.28.42005-10-30
CVE-2005-3382 [MEDIUM] CVE-2005-3382: Multiple interpretation error in Sophos 3.91 with the 2.28.4 engine allows remote attackers to bypas Multiple interpretation error in Sophos 3.91 with the 2.28.4 engine allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a dangerous file type by applications on the end sy
nvd
CVE-2014-1213P4MEDIUMCVSS 5.6v10.0.112014-02-10
CVE-2014-1213 [MEDIUM] CWE-264 CVE-2014-1213: Sophos Anti-Virus engine (SAVi) before 3.50.1, as used in VDL 4.97G 9.7.x before 9.7.9, 10.0.x befor Sophos Anti-Virus engine (SAVi) before 3.50.1, as used in VDL 4.97G 9.7.x before 9.7.9, 10.0.x before 10.0.11, and 10.3.x before 10.3.1 does not set an ACL for certain global and session objects, which allows local users to bypass anti-virus protection, cause a denial of service (resource consumption, CPU consumption, and eventual crash) or spoof "rea
nvd
CVE-2006-4839P4MEDIUMCVSS 5.0v5.12006-11-01
CVE-2006-4839 [MEDIUM] CVE-2006-4839: Sophos Anti-Virus 5.1 allows remote attackers to cause a denial of service (memory consumption) via Sophos Anti-Virus 5.1 allows remote attackers to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.
nvd
Sophos Anti-Virus vulnerabilities | cvebase