Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sophos vulnerabilities and exploits
(subscribe to this query)
5.1
CVSSv2
CVE-2005-1551
Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, which creates a race condition and may allow remote malicious users to bypass virus protection if the file is executed before the antivirus starts on system reboot.
Sophos Sophos Anti-virus 3.93
5
CVSSv2
CVE-2022-0331
An information disclosure vulnerability in Webadmin allows an unauthenticated remote malicious user to read the device serial number in Sophos Firewall version v18.5 MR2 and older.
Sophos Sfos
5
CVSSv2
CVE-2016-6597
Sophos EAS Proxy prior to 6.2.0 for Sophos Mobile Control, when Lotus Traveler is enabled, allows remote malicious users to access arbitrary web-resources from the backend mail system via a request for the resource, aka an Open Reverse Proxy vulnerability.
Sophos Mobile Control Eas Proxy
5
CVSSv2
CVE-2013-2641
Directory traversal vulnerability in patience.cgi in Sophos Web Appliance prior to 3.7.8.2 allows remote malicious users to read arbitrary files via the id parameter.
Sophos Web Appliance Firmware
Sophos Web Appliance -
1 EDB exploit
5
CVSSv2
CVE-2008-7106
The installation of Sophos PureMessage for Microsoft Exchange 3.0 prior to 3.0.2, when both anti-virus and anti-spam are supported, does not create or launch the associated scan engines when the system is under heavy load, which has unspecified impact, probably remote bypass of s...
Sophos Puremessage For Microsoft Exchange 3.0
5
CVSSv2
CVE-2008-7105
Sophos PureMessage for Microsoft Exchange 3.0 prior to 3.0.2 allows remote malicious users to cause a denial of service (EdgeTransport.exe termination) via a TNEF-encoded message with a crafted rich text body that is not properly handled during conversion to plain text. NOTE: thi...
Sophos Puremessage For Microsoft Exchange 3.0
5
CVSSv2
CVE-2008-7104
Sophos PureMessage Scanner service (PMScanner.exe) in PureMessage for Microsoft Exchange 3.0 prior to 3.0.2 allows remote malicious users to cause a denial of service (message queue delay and incomplete spam rule update) via a crafted (1) RTF or (2) PDF file.
Sophos Puremessage For Microsoft Exchange 3.0
5
CVSSv2
CVE-2008-3177
Sophos virus detection engine 2.75 on Linux and Unix, as used in Sophos Email Appliance, Pure Message for Unix, and Sophos Anti-Virus Interface (SAVI), allows remote malicious users to cause a denial of service (engine crash) via zero-length MIME attachments.
Sophos Es4000
Sophos Sophos Anti-virus
Sophos Es1000
Sophos Sophos Puremessage Anti-virus
5
CVSSv2
CVE-2007-4787
The virus detection engine in Sophos Anti-Virus prior to 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with modified headers, which might allow remote malicious users to bypass malware detection.
Sophos Sophos Anti-virus 3.78
Sophos Sophos Anti-virus 3.78d
Sophos Sophos Anti-virus 3.86
Sophos Sophos Anti-virus 3.90
Sophos Sophos Anti-virus 4.5.12
Sophos Sophos Anti-virus 4.5.3
Sophos Sophos Anti-virus 5.1
Sophos Sophos Anti-virus 5.2.0
Sophos Sophos Anti-virus 3.81
Sophos Sophos Anti-virus 3.82
Sophos Sophos Anti-virus 3.83
Sophos Sophos Anti-virus 3.96
Sophos Sophos Anti-virus 4.04
Sophos Sophos Anti-virus 4.7.2
Sophos Sophos Anti-virus 5.0.1
Sophos Sophos Anti-virus 6.5.4 R2
Sophos Sophos Anti-virus 6.5.8
Sophos Sophos Anti-virus 3.79
Sophos Sophos Anti-virus 3.80
Sophos Sophos Anti-virus 3.91
Sophos Sophos Anti-virus 3.95
Sophos Sophos Anti-virus 4.5.4
5
CVSSv2
CVE-2006-4839
Sophos Anti-Virus 5.1 allows remote malicious users to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.
Sophos Sophos Anti-virus 5.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »