Vulnerabilities > Sophos > Small Business Suite

DATE CVE VULNERABILITY TITLE RISK
2007-08-28 CVE-2007-4578 Numeric Errors vulnerability in Sophos Anti-Virus, Scanning Engine and Small Business Suite
Sophos Anti-Virus for Windows and for Unix/Linux before 2.48.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted UPX packed file, resulting from an "integer cast around".
network
sophos CWE-189
6.8
6.8
2007-08-28 CVE-2007-4577 Resource Management Errors vulnerability in Sophos Anti-Virus, Scanning Engine and Small Business Suite
Sophos Anti-Virus for Unix/Linux before 2.48.0 allows remote attackers to cause a denial of service (infinite loop) via a malformed BZip file that results in the creation of multiple Engine temporary files (aka a "BZip bomb").
network
low complexity
sophos CWE-399
7.8
7.8
2004-11-03 CVE-2004-0552 Unspecified vulnerability in Sophos Small Business Suite
Sophos Small Business Suite 1.00 on Windows does not properly handle files whose names contain reserved MS-DOS device names such as (1) LPT1, (2) COM1, (3) AUX, (4) CON, or (5) PRN, which can allow malicious code to bypass detection when it is installed, copied, or executed.
network
low complexity
sophos
7.5
7.5