Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sophos sophos anti-virus vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3177
Sophos virus detection engine 2.75 on Linux and Unix, as used in Sophos Email Appliance, Pure Message for Unix, and Sophos Anti-Virus Interface (SAVI), allows remote malicious users to cause a denial of service (engine crash) via zero-length MIME attachments.
Sophos Es4000
Sophos Sophos Anti-virus
Sophos Es1000
Sophos Sophos Puremessage Anti-virus
NA
CVE-2008-1737
Sophos Anti-Virus 7.0.5, and other 7.x versions, when Runtime Behavioural Analysis is enabled, allows local users to cause a denial of service (reboot with the product disabled) and possibly gain privileges via a zero value in a certain length field in the ObjectAttributes argume...
Sophos Anti-virus 7.0.5
NA
CVE-2007-4787
The virus detection engine in Sophos Anti-Virus prior to 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with modified headers, which might allow remote malicious users to bypass malware detection.
Sophos Sophos Anti-virus 3.78
Sophos Sophos Anti-virus 3.78d
Sophos Sophos Anti-virus 3.86
Sophos Sophos Anti-virus 3.90
Sophos Sophos Anti-virus 4.5.12
Sophos Sophos Anti-virus 4.5.3
Sophos Sophos Anti-virus 5.1
Sophos Sophos Anti-virus 5.2.0
Sophos Sophos Anti-virus 3.81
Sophos Sophos Anti-virus 3.82
Sophos Sophos Anti-virus 3.83
Sophos Sophos Anti-virus 3.96
Sophos Sophos Anti-virus 4.04
Sophos Sophos Anti-virus 4.7.2
Sophos Sophos Anti-virus 5.0.1
Sophos Sophos Anti-virus 6.5.4 R2
Sophos Sophos Anti-virus 6.5.8
Sophos Sophos Anti-virus 3.79
Sophos Sophos Anti-virus 3.80
Sophos Sophos Anti-virus 3.91
Sophos Sophos Anti-virus 3.95
Sophos Sophos Anti-virus 4.5.4
NA
CVE-2007-4512
Cross-site scripting (XSS) vulnerability in Sophos Anti-Virus for Windows 6.x prior to 6.5.8 and 7.x prior to 7.0.1 allows remote malicious users to inject arbitrary web script or HTML via an archive with a file that matches a virus signature and has a crafted filename that is no...
Sophos Anti-virus
NA
CVE-2007-4577
Sophos Anti-Virus for Unix/Linux prior to 2.48.0 allows remote malicious users to cause a denial of service (infinite loop) via a malformed BZip file that results in the creation of multiple Engine temporary files (aka a "BZip bomb").
Sophos Anti-virus 3.78d
Sophos Anti-virus 3.79
Sophos Anti-virus 3.86
Sophos Anti-virus 3.90
Sophos Anti-virus 4.5.12
Sophos Anti-virus 4.5.3
Sophos Anti-virus 5.0.9
Sophos Small Business Suite 4.04
Sophos Small Business Suite 4.05
Sophos Anti-virus 3.82
Sophos Anti-virus 3.83
Sophos Anti-virus 3.96.0
Sophos Anti-virus 4.03
Sophos Anti-virus 4.7.2
Sophos Anti-virus 5.0.1
Sophos Anti-virus 5.2.1
Sophos Anti-virus 6.5
Sophos Anti-virus 3.80
Sophos Anti-virus 3.81
Sophos Anti-virus 3.91
Sophos Anti-virus 3.95
Sophos Anti-virus 4.5.4
NA
CVE-2007-4578
Sophos Anti-Virus for Windows and for Unix/Linux prior to 2.48.0 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted UPX packed file, resulting from an "integer cast around". NOTE: as of 20070828, the vend...
Sophos Anti-virus 3.78
Sophos Anti-virus 3.78d
Sophos Anti-virus 3.79
Sophos Anti-virus 3.86
Sophos Anti-virus 3.90
Sophos Anti-virus 4.5.11
Sophos Anti-virus 4.5.12
Sophos Anti-virus 5.0.9
Sophos Small Business Suite 4.04
Sophos Small Business Suite 4.05
Sophos Anti-virus 3.4.6
Sophos Anti-virus 3.84
Sophos Anti-virus 3.85
Sophos Anti-virus 4.04
Sophos Anti-virus 4.05
Sophos Anti-virus 5.0.1
Sophos Anti-virus 5.0.2
Sophos Anti-virus 5.0.4
Sophos Scanning Engine 2.30.4
Sophos Scanning Engine 2.40.2
Sophos Anti-virus 3.82
Sophos Anti-virus 3.83
NA
CVE-2006-6335
Multiple buffer overflows in Sophos Anti-Virus scanning engine prior to 2.40 allow remote malicious users to execute arbitrary code via (1) a SIT archive with a long filename that is not null-terminated, which triggers a heap-based overflow in veex.dll due to improper length calc...
Sophos Sophos Anti-virus
NA
CVE-2006-4839
Sophos Anti-Virus 5.1 allows remote malicious users to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.
Sophos Sophos Anti-virus 5.1
NA
CVE-2006-5645
Sophos Anti-Virus and Endpoint Security prior to 6.0.5, Anti-Virus for Linux prior to 5.0.10, and other platforms prior to 4.11, when "Enabled scanning of archives" is set, allows remote malicious users to cause a denial of service (infinite loop) via a malformed RAR ar...
Sophos Anti-virus 4.04
Sophos Anti-virus 5.0.1
Sophos Anti-virus 5.0.2
Sophos Anti-virus 4.5.3
Sophos Anti-virus 4.5.4
Sophos Anti-virus 5.2
Sophos Anti-virus 5.2.1
Sophos Anti-virus 4.7.1
Sophos Anti-virus 4.7.2
Sophos Anti-virus 6.0.4
Sophos Endpoint Security
Sophos Anti-virus 4.05
Sophos Anti-virus 4.5.11
Sophos Anti-virus 4.5.12
Sophos Anti-virus 5.0.4
Sophos Anti-virus 5.1
1 EDB exploit
NA
CVE-2006-5646
Heap-based buffer overflow in Sophos Anti-Virus and Endpoint Security prior to 6.0.5, Anti-Virus for Linux prior to 5.0.10, and other platforms prior to 4.11, when archive scanning is enabled, allows remote malicious users to trigger a denial of service (memory corruption) via a ...
Sophos Anti-virus 4.04
Sophos Anti-virus 4.05
Sophos Anti-virus 4.5.11
Sophos Endpoint Security
Sophos Anti-virus 4.7.2
Sophos Anti-virus 5.0.1
Sophos Anti-virus 5.0.2
Sophos Anti-virus 5.0.4
Sophos Anti-virus 4.5.12
Sophos Anti-virus 4.5.4
Sophos Anti-virus 5.2
Sophos Anti-virus 6.0.4
Sophos Anti-virus 4.5.3
Sophos Anti-virus 4.7.1
Sophos Anti-virus 5.1
Sophos Anti-virus 5.2.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »