Product:

Sophos_anti\-Virus

(Sophos)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 36
Date Id Summary Products Score Patch Annotated
2005-10-14 CVE-2005-3216 Multiple interpretation error in unspecified versions of Sophos Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper. Sophos_anti\-Virus N/A
2005-09-02 CVE-2005-2768 Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage, MailMonitor, and other products, allows remote attackers to execute arbitrary code via a Visio file with a crafted sub record length. Sophos_anti\-Virus N/A
2005-05-14 CVE-2005-1551 Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, which creates a race condition and may allow remote attackers to bypass virus protection if the file is executed before the antivirus starts on system reboot. Sophos_anti\-Virus N/A
2005-07-19 CVE-2005-1530 Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value. Sophos_anti\-Virus, Sophos_mailmonitor, Sophos_mailmonitor_for_notes_domino, Sophos_puremessage_anti\-Virus, Sophos_small_business_suite N/A
2004-02-12 CVE-2004-2088 Sophos Anti-Virus 3.78 allows remote attackers to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message. Sophos_anti\-Virus N/A
2004-12-31 CVE-2004-2075 Sophos Anti-Virus 3.78 allows remote attackers to cause a denial of service (infinite loop) via a MIME header that is not properly terminated. Sophos_anti\-Virus N/A