Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sophos vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-4839
Sophos Anti-Virus 5.1 allows remote malicious users to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.
Sophos Sophos Anti-virus 5.1
5
CVSSv2
CVE-2006-5646
Heap-based buffer overflow in Sophos Anti-Virus and Endpoint Security prior to 6.0.5, Anti-Virus for Linux prior to 5.0.10, and other platforms prior to 4.11, when archive scanning is enabled, allows remote malicious users to trigger a denial of service (memory corruption) via a ...
Sophos Anti-virus 4.04
Sophos Anti-virus 5.2
Sophos Anti-virus 5.0.2
Sophos Anti-virus 4.5.12
Sophos Endpoint Security
Sophos Anti-virus 4.5.11
Sophos Anti-virus 4.7.1
Sophos Anti-virus 4.7.2
Sophos Anti-virus 5.0.4
Sophos Anti-virus 5.2.1
Sophos Anti-virus 4.05
Sophos Anti-virus 4.5.3
Sophos Anti-virus 4.5.4
Sophos Anti-virus 6.0.4
Sophos Anti-virus 5.1
Sophos Anti-virus 5.0.1
1 EDB exploit
5
CVSSv2
CVE-2005-4680
Sophos Anti-Virus prior to 4.02, 4.5.x prior to 4.5.9, 4.6.x prior to 4.6.9, and 5.x prior to 5.1.4 allow remote malicious users to hide arbitrary files and data via crafted ARJ archives, which are not properly scanned.
Sophos Sophos Anti-virus 4.04
Sophos Sophos Anti-virus
5
CVSSv2
CVE-2005-3382
Multiple interpretation error in Sophos 3.91 with the 2.28.4 engine allows remote malicious users to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated a...
Sophos Sophos Anti-virus 3.91 Engine 2.28.4
5
CVSSv2
CVE-2005-1530
Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote malicious users to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value.
Sophos Sophos Small Business Suite 1.0
Sophos Sophos Anti-virus 3.83
Sophos Sophos Anti-virus 3.91
Sophos Sophos Mailmonitor For Notes Domino
Sophos Sophos Mailmonitor 2.1
Sophos Sophos Anti-virus 3.80
Sophos Sophos Anti-virus 3.81
Sophos Sophos Anti-virus 3.86
Sophos Sophos Anti-virus 3.78
Sophos Sophos Anti-virus 3.82
Sophos Sophos Anti-virus 3.79
Sophos Sophos Puremessage Anti-virus 4.6
Sophos Sophos Anti-virus 3.78d
Sophos Sophos Anti-virus 3.90
Sophos Sophos Anti-virus 3.4.6
Sophos Sophos Anti-virus 5.0.1
Sophos Sophos Anti-virus 3.84
Sophos Sophos Mailmonitor 2.0
Sophos Sophos Anti-virus 3.85
5
CVSSv2
CVE-2004-2252
The firewall in Astaro Security Linux prior to 4.024 sends responses to SYN-FIN packets, which makes it easier for remote malicious users to obtain information about the system and construct specialized attacks.
Sophos Astaro Security Linux
5
CVSSv2
CVE-2004-2075
Sophos Anti-Virus 3.78 allows remote malicious users to cause a denial of service (infinite loop) via a MIME header that is not properly terminated.
5
CVSSv2
CVE-2004-2088
Sophos Anti-Virus 3.78 allows remote malicious users to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message.
Sophos Sophos Anti-virus 3.78
Sophos Sophos Anti-virus 3.4.6
4.9
CVSSv2
CVE-2018-6319
In Sophos Tester Tool 3.2.0.7 Beta, the driver accepts a special DeviceIoControl code that doesn't check its argument. This argument is a memory address: if a caller passes a NULL pointer or a random invalid address, the driver will cause a Blue Screen of Death. If a program...
Sophos Sophos Tester 3.2.0.7
4.9
CVSSv2
CVE-2017-6007
A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro prior to 3.7.20 Build 286 (included in the HitmanPro.Alert solution and Sophos Clean) allows local users to crash the OS via a malformed IOCTL call.
Sophos Hitmanpro
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
7
8
9
10
NEXT »