Vulnerabilities > Sophos > Sophos Anti Virus > 3.95
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-09-10 | CVE-2007-4787 | Improper Input Validation vulnerability in Sophos Scanning Engine and Sophos Anti-Virus The virus detection engine in Sophos Anti-Virus before 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with modified headers, which might allow remote attackers to bypass malware detection. | 5.0 |
| 2005-12-31 | CVE-2005-4680 | Remote Security vulnerability in Sophos Anti-Virus Sophos Anti-Virus before 4.02, 4.5.x before 4.5.9, 4.6.x before 4.6.9, and 5.x before 5.1.4 allow remote attackers to hide arbitrary files and data via crafted ARJ archives, which are not properly scanned. | 5.0 |
| 2005-09-02 | CVE-2005-2768 | Remote Heap Overflow vulnerability in Sophos Anti-Virus Library Visio Scanning Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage, MailMonitor, and other products, allows remote attackers to execute arbitrary code via a Visio file with a crafted sub record length. | 7.5 |