Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4578

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-4578
Last Modified 07 Mar 2011 09:58:49
Published 28 Aug 2007 02:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4578

Summary

Sophos Anti-Virus for Windows and for Unix/Linux before 2.48.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted UPX packed file, resulting from an "integer cast around". NOTE: as of 20070828, the vendor says this is a DoS and the researcher says this allows code execution, but the researcher is reliable.

Vulnerable Systems

Application

  • Sophos Anti-virus 3.4.6

  • Sophos Anti-virus 3.78

  • Sophos Anti-virus 3.78d

  • Sophos Anti-virus 3.79

  • Sophos Anti-virus 3.80

  • Sophos Anti-virus 3.81

  • Sophos Anti-virus 3.82

  • Sophos Anti-virus 3.83

  • Sophos Anti-virus 3.84

  • Sophos Anti-virus 3.85

  • Sophos Anti-virus 3.86

  • Sophos Anti-virus 3.90

  • Sophos Anti-virus 3.91

  • Sophos Anti-virus 3.95

  • Sophos Anti-virus 3.96.0

  • Sophos Anti-virus 4.03

  • Sophos Anti-virus 4.04

  • Sophos Anti-virus 4.05

  • Sophos Anti-virus 4.5.11

  • Sophos Anti-virus 4.5.12

  • Sophos Anti-virus 4.5.3

  • Sophos Anti-virus 4.5.4

  • Sophos Anti-virus 4.7.1

  • Sophos Anti-virus 4.7.2

  • Sophos Anti-virus 5.0.1

  • Sophos Anti-virus 5.0.2

  • Sophos Anti-virus 5.0.4

  • Sophos Anti-virus 5.0.9

  • Sophos Anti-virus 5.1

  • Sophos Anti-virus 5.2

  • Sophos Anti-virus 5.2.1

  • Sophos Anti-virus 6.5

  • Sophos Scanning Engine 2.30.4

  • Sophos Scanning Engine 2.40.2

  • Sophos Small Business Suite 4.04

  • Sophos Small Business Suite 4.05


References

CONFIRM - http://www.sophos.com/support/knowledgebase/article/28407.html

BID - 25428

SECUNIA - 26580

VUPEN - ADV-2007-2972

BUGTRAQ - 20070827 RE: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory

BUGTRAQ - 20070827 Re: n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory

BUGTRAQ - 20070824 n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory

MISC - http://www.nruns.com/security_advisory_sophos_upx_infinite_loop_dos.php

SECTRACK - 1018608

SREASON - 3072


Last Updated: 27 May 2016 10:45:54