CVE-2006-5645

Name of the Vulnerable Software and Affected Versions: Sophos Anti-Virus and Endpoint Security versions prior to 6.0.5 Sophos Anti-Virus for Linux versions prior to 5.0.10 Sophos other platforms versions prior to 4.11

Description: The issue allows remote attackers to cause a denial of service, resulting in an infinite loop, by sending a malformed RAR archive. This archive has an Archive Header section where the head size and pack size fields are set to zero. The attack is possible when the "Enabled scanning of archives" option is set.

Recommendations: For Sophos Anti-Virus and Endpoint Security versions prior to 6.0.5, update to version 6.0.5 or later. For Sophos Anti-Virus for Linux versions prior to 5.0.10, update to version 5.0.10 or later. For Sophos other platforms versions prior to 4.11, update to version 4.11 or later. As a temporary workaround, consider disabling the "Enabled scanning of archives" option until a patch is available.