PT-2007-5927 · Sophos · Sophos Anti-Virus

Published

2007-09-10

Updated

2017-07-29

CVE-2007-4787

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions: Sophos Anti-Virus versions prior to 2.49.0

Description: The issue is related to the improper processing of malformed files by the virus detection engine. Specifically, it affects the handling of CAB, LZH, and RAR files with modified headers. This could potentially allow remote attackers to bypass malware detection.

Recommendations: For versions prior to 2.49.0, update to version 2.49.0 or later to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2007-4787

Affected Products

Sophos Anti-Virus

PT-2007-5927 · Sophos · Sophos Anti-Virus

CVE-2007-4787

Weakness Enumeration

Related Identifiers

Affected Products

References · 7