CVE Vulnerabilities

CVE-2008-6903

Published: Aug 06, 2009 | Modified: Aug 19, 2009
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Sophos Anti-Virus for Windows before 7.6.3, Anti-Virus for Windows NT/9x before 4.7.18, Anti-Virus for OS X before 4.9.18, Anti-Virus for Linux before 6.4.5, Anti-Virus for UNIX before 7.0.5, Anti-Virus for Unix and Netware before 4.37.0, Sophos EM Library, and Sophos small business solutions, when CAB archive scanning is enabled, allows remote attackers to cause a denial of service (segmentation fault) via a fuzzed CAB archive file, as demonstrated by the OUSPG PROTOS GENOME test suite for Archive Formats.

Affected Software

Name Vendor Start Version End Version
Anti-virus Sophos 4.7.18 4.7.18
Anti-virus Sophos 4.7.18 4.7.18
Anti-virus Sophos 4.9.18 4.9.18
Anti-virus Sophos 4.37.0 4.37.0
Anti-virus Sophos 6.4.5 6.4.5
Anti-virus Sophos 7.0.5 7.0.5
Anti-virus7.6.3 Sophos * *

References