Vulnerabilities > Sophos

DATE CVE VULNERABILITY TITLE RISK
2005-01-27 CVE-2004-0932 McAfee Anti-Virus Engine DATS drivers before 4398 released on Oct 13th 2004 and DATS Driver before 4397 October 6th 2004 allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system. 7.5
7.5
2005-01-10 CVE-2004-1096 Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system. 7.5
7.5
2004-12-31 CVE-2004-2075 Denial Of Service vulnerability in Sophos Anti-Virus MIME Header Handling
Sophos Anti-Virus 3.78 allows remote attackers to cause a denial of service (infinite loop) via a MIME header that is not properly terminated.
network
low complexity
sophos
5.0
5.0
2004-11-03 CVE-2004-0552 Unspecified vulnerability in Sophos Small Business Suite
Sophos Small Business Suite 1.00 on Windows does not properly handle files whose names contain reserved MS-DOS device names such as (1) LPT1, (2) COM1, (3) AUX, (4) CON, or (5) PRN, which can allow malicious code to bypass detection when it is installed, copied, or executed.
network
low complexity
sophos
7.5
7.5
2004-02-12 CVE-2004-2088 Unspecified vulnerability in Sophos Anti-Virus 3.4.6/3.78
Sophos Anti-Virus 3.78 allows remote attackers to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message.
network
low complexity
sophos
5.0
5.0