Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sophos anti-virus vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6904
Multiple unspecified vulnerabilities in Sophos SAVScan 4.33.0 for Linux, and possibly other products and versions, allow remote malicious users to cause a denial of service (segmentation fault) and possibly execute arbitrary code via crafted files that have been packed with (1) a...
Sophos Anti-virus 4.7.18
Sophos Anti-virus 4.9.18
Sophos Anti-virus 6.4.5
Sophos Anti-virus 7.0.5
Sophos Anti-virus 4.37.0
Sophos Anti-virus7.6.3
NA
CVE-2005-4680
Sophos Anti-Virus prior to 4.02, 4.5.x prior to 4.5.9, 4.6.x prior to 4.6.9, and 5.x prior to 5.1.4 allow remote malicious users to hide arbitrary files and data via crafted ARJ archives, which are not properly scanned.
Sophos Sophos Anti-virus
Sophos Sophos Anti-virus 4.04
NA
CVE-2004-2088
Sophos Anti-Virus 3.78 allows remote malicious users to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message.
Sophos Sophos Anti-virus 3.4.6
Sophos Sophos Anti-virus 3.78
8.8
CVSSv3
CVE-2020-10947
Mac Endpoint for Sophos Central prior to 9.9.6 and Mac Endpoint for Sophos Home prior to 2.2.6 allow Privilege Escalation.
Sophos Anti-virus For Sophos Central
Sophos Anti-virus For Sophos Home
NA
CVE-2006-6335
Multiple buffer overflows in Sophos Anti-Virus scanning engine prior to 2.40 allow remote malicious users to execute arbitrary code via (1) a SIT archive with a long filename that is not null-terminated, which triggers a heap-based overflow in veex.dll due to improper length calc...
Sophos Sophos Anti-virus
NA
CVE-2006-0994
Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x prior to 5.2.1 and 4.x prior to 4.05, when cabinet file inspection is enabled, allows remote malicious users to execute arbitrary code via a CAB file with "invalid folder count values," which lead...
Sophos Sophos Anti-virus
NA
CVE-2005-3216
Multiple interpretation error in unspecified versions of Sophos Antivirus allows remote malicious users to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Win...
Sophos Sophos Anti-virus
NA
CVE-2006-4839
Sophos Anti-Virus 5.1 allows remote malicious users to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.
Sophos Sophos Anti-virus 5.1
NA
CVE-2005-1551
Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, which creates a race condition and may allow remote malicious users to bypass virus protection if the file is executed before the antivirus starts on system reboot.
Sophos Sophos Anti-virus 3.93
NA
CVE-2005-3382
Multiple interpretation error in Sophos 3.91 with the 2.28.4 engine allows remote malicious users to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated a...
Sophos Sophos Anti-virus 3.91 Engine 2.28.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »