CVE-2004-2088 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2004-2088

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Sophos Anti-Virus 3.78 allows remote attackers to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message.

Affected Software

Name	Vendor	Start Version	End Version
Sophos_anti-virus	Sophos	3.4.6 (including)	3.4.6 (including)
Sophos_anti-virus	Sophos	3.78 (including)	3.78 (including)

References

http://secunia.com/advisories/10855
http://securitytracker.com/id?1009042
http://www.securityfocus.com/bid/9650
http://www.sophos.com/support/news/#mime-378
https://exchange.xforce.ibmcloud.com/vulnerabilities/15192
http://secunia.com/advisories/10855
http://securitytracker.com/id?1009042
http://www.securityfocus.com/bid/9650
http://www.sophos.com/support/news/#mime-378
https://exchange.xforce.ibmcloud.com/vulnerabilities/15192