CVE Vulnerabilities

CVE-2006-5645

Published: Nov 01, 2006 | Modified: Oct 17, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11, when Enabled scanning of archives is set, allows remote attackers to cause a denial of service (infinite loop) via a malformed RAR archive with an Archive Header section with the head_size and pack_size fields set to zero.

Affected Software

Name Vendor Start Version End Version
Anti-virus Sophos 4.04 4.04
Anti-virus Sophos 5.2 5.2
Anti-virus Sophos 5.0.2 5.0.2
Anti-virus Sophos 4.5.12 4.5.12
Endpoint_security Sophos * 6.04
Anti-virus Sophos 4.5.11 4.5.11
Anti-virus Sophos 4.7.1 4.7.1
Anti-virus Sophos 4.7.2 4.7.2
Anti-virus Sophos 5.0.4 5.0.4
Anti-virus Sophos 5.2.1 5.2.1
Anti-virus Sophos 4.05 4.05
Anti-virus Sophos 4.5.3 4.5.3
Anti-virus Sophos 4.5.4 4.5.4
Anti-virus Sophos 6.0.4 6.0.4
Anti-virus Sophos 5.1 5.1
Anti-virus Sophos 5.0.1 5.0.1

References