Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2768

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-2768
Last Modified 05 Sep 2008 04:52:38
Published 02 Sep 2005 07:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2768

Summary

Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage, MailMonitor, and other products, allows remote attackers to execute arbitrary code via a Visio file with a crafted sub record length.

Vulnerable Systems

Application

  • Sophos Anti-virus 3.4.6

  • Sophos Anti-virus 3.78

  • Sophos Anti-virus 3.78d

  • Sophos Anti-virus 3.79

  • Sophos Anti-virus 3.80

  • Sophos Anti-virus 3.81

  • Sophos Anti-virus 3.82

  • Sophos Anti-virus 3.83

  • Sophos Anti-virus 3.84

  • Sophos Anti-virus 3.85

  • Sophos Anti-virus 3.86

  • Sophos Anti-virus 3.90

  • Sophos Anti-virus 3.91

  • Sophos Anti-virus 3.95

  • Sophos Anti-virus 4.5.3

  • Sophos Anti-virus 5.0.1

  • Sophos Anti-virus 5.0.4


References

XF - sophos-bo(21608)

CONFIRM - http://www.sophos.com/support/knowledgebase/article/3409.html

BID - 14362

MISC - http://www.rem0te.com/public/images/sophos.pdf

SECUNIA - 16245

BUGTRAQ - 20050826 Sophos Antivirus Library Remote Heap Overflow


Last Updated: 27 May 2016 10:40:38