Vulnerabilities > CVE-2004-2088 - Unspecified vulnerability in Sophos Anti-Virus 3.4.6/3.78

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
sophos

Summary

Sophos Anti-Virus 3.78 allows remote attackers to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message.

Vulnerable Configurations

Part Description Count
Application
Sophos
2