Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sophos anti-virus 3.91 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3382
Multiple interpretation error in Sophos 3.91 with the 2.28.4 engine allows remote malicious users to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated a...
Sophos Sophos Anti-virus 3.91 Engine 2.28.4
NA
CVE-2005-2768
Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage, MailMonitor, and other products, allows remote malicious users to execute arbitrary code via a Visio file with a crafted sub record length.
Sophos Sophos Anti-virus 3.83
Sophos Sophos Anti-virus 3.91
Sophos Sophos Anti-virus 3.80
Sophos Sophos Anti-virus 3.81
Sophos Sophos Anti-virus 3.86
Sophos Sophos Anti-virus 3.78
Sophos Sophos Anti-virus 3.82
Sophos Sophos Anti-virus 3.79
Sophos Sophos Anti-virus 4.5.3
Sophos Sophos Anti-virus 3.78d
Sophos Sophos Anti-virus 3.90
Sophos Sophos Anti-virus 3.4.6
Sophos Sophos Anti-virus 3.95
Sophos Sophos Anti-virus 5.0.1
Sophos Sophos Anti-virus 3.84
Sophos Sophos Anti-virus 5.0.4
Sophos Sophos Anti-virus 3.85
NA
CVE-2005-1530
Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote malicious users to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value.
Sophos Sophos Small Business Suite 1.0
Sophos Sophos Anti-virus 3.83
Sophos Sophos Anti-virus 3.91
Sophos Sophos Mailmonitor For Notes Domino
Sophos Sophos Mailmonitor 2.1
Sophos Sophos Anti-virus 3.80
Sophos Sophos Anti-virus 3.81
Sophos Sophos Anti-virus 3.86
Sophos Sophos Anti-virus 3.78
Sophos Sophos Anti-virus 3.82
Sophos Sophos Anti-virus 3.79
Sophos Sophos Puremessage Anti-virus 4.6
Sophos Sophos Anti-virus 3.78d
Sophos Sophos Anti-virus 3.90
Sophos Sophos Anti-virus 3.4.6
Sophos Sophos Anti-virus 5.0.1
Sophos Sophos Anti-virus 3.84
Sophos Sophos Mailmonitor 2.0
Sophos Sophos Anti-virus 3.85
NA
CVE-2010-2308
Unspecified vulnerability in the filter driver (savonaccessfilter.sys) in Sophos Anti-Virus prior to 7.6.20 allows local users to gain privileges via crafted arguments to the NtQueryAttributesFile function.
Sophos Anti-virus 4.04
Sophos Anti-virus 5.2
Sophos Anti-virus 3.83
Sophos Anti-virus 7.6.15
Sophos Anti-virus 3.86
Sophos Anti-virus 7.6.14
Sophos Anti-virus 3.4.6
Sophos Anti-virus 5.0.2
Sophos Anti-virus 3.80
Sophos Anti-virus 7.0
Sophos Anti-virus 3.96.0
Sophos Anti-virus 4.5.12
Sophos Anti-virus 3.81
Sophos Anti-virus 7.6.16
Sophos Anti-virus 4.5.11
Sophos Anti-virus 3.79
Sophos Anti-virus 4.7.1
Sophos Anti-virus 4.03
Sophos Anti-virus 7.6.17
Sophos Anti-virus 4.33.0
Sophos Anti-virus 6.5
Sophos Anti-virus 4.7.2
NA
CVE-2007-4577
Sophos Anti-Virus for Unix/Linux prior to 2.48.0 allows remote malicious users to cause a denial of service (infinite loop) via a malformed BZip file that results in the creation of multiple Engine temporary files (aka a "BZip bomb").
Sophos Anti-virus 4.04
Sophos Anti-virus 4.03
Sophos Anti-virus 5.2
Sophos Anti-virus 3.83
Sophos Anti-virus 3.86
Sophos Anti-virus 3.4.6
Sophos Anti-virus 5.0.2
Sophos Anti-virus 3.80
Sophos Anti-virus 3.96.0
Sophos Anti-virus 5.0.9
Sophos Anti-virus 4.5.12
Sophos Anti-virus 3.81
Sophos Anti-virus 4.5.11
Sophos Anti-virus 3.79
Sophos Anti-virus 4.7.1
Sophos Small Business Suite 4.04
Sophos Anti-virus 6.5
Sophos Anti-virus 4.7.2
Sophos Anti-virus 5.0.4
Sophos Anti-virus 3.90
Sophos Anti-virus 5.2.1
Sophos Anti-virus 3.78
NA
CVE-2007-4578
Sophos Anti-Virus for Windows and for Unix/Linux prior to 2.48.0 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted UPX packed file, resulting from an "integer cast around". NOTE: as of 20070828, the vend...
Sophos Anti-virus 4.04
Sophos Anti-virus 4.03
Sophos Anti-virus 5.2
Sophos Anti-virus 3.83
Sophos Anti-virus 3.86
Sophos Anti-virus 3.4.6
Sophos Anti-virus 5.0.2
Sophos Anti-virus 3.80
Sophos Anti-virus 3.96.0
Sophos Anti-virus 5.0.9
Sophos Anti-virus 4.5.12
Sophos Anti-virus 3.81
Sophos Anti-virus 4.5.11
Sophos Anti-virus 3.79
Sophos Anti-virus 4.7.1
Sophos Small Business Suite 4.04
Sophos Anti-virus 6.5
Sophos Anti-virus 4.7.2
Sophos Anti-virus 5.0.4
Sophos Anti-virus 3.90
Sophos Anti-virus 5.2.1
Sophos Anti-virus 3.78
NA
CVE-2007-4787
The virus detection engine in Sophos Anti-Virus prior to 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with modified headers, which might allow remote malicious users to bypass malware detection.
Sophos Sophos Anti-virus 4.5.11
Sophos Sophos Anti-virus 3.96
Sophos Sophos Anti-virus 5.0.2
Sophos Sophos Anti-virus 5.2.0
Sophos Sophos Anti-virus 4.04
Sophos Sophos Anti-virus 3.83
Sophos Sophos Anti-virus 6.0
Sophos Sophos Anti-virus 3.91
Sophos Sophos Anti-virus 3.80
Sophos Sophos Anti-virus 3.81
Sophos Sophos Anti-virus 3.86
Sophos Sophos Anti-virus 3.78
Sophos Sophos Anti-virus 5.2.1
Sophos Sophos Anti-virus 3.82
Sophos Sophos Anti-virus 3.79
Sophos Sophos Anti-virus 4.5.3
Sophos Sophos Anti-virus 4.7.2
Sophos Sophos Anti-virus 4.7.1
Sophos Sophos Anti-virus 6.5.8
Sophos Sophos Anti-virus 3.78d
Sophos Sophos Anti-virus 4.05
Sophos Sophos Anti-virus 3.90
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started