Sophos Anti-Virus Buffer Overflow Lets Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1014588
|
|
SecurityTracker URL: http://securitytracker.com/id?1014588
|
|
CVE Reference: GENERIC-MAP-NOMATCH
(Links to External Site)
|
Updated: Aug 26 2005
|
Original Entry Date: Jul 27 2005
|
Impact: Execution of arbitrary code via network, User access via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): prior to 3.96.0; prior to 4.5.4
|
Description: A buffer overflow vulnerability was reported in Sophos Anti-Virus. A remote user can execute arbitrary code on the target system.
The software does not properly parse Visio files when scanning them. A remote user can create a specially crafted Visio file that,
when scanned by the target system, will trigger a heap overflow and execute arbitrary code on the target system.
The vendor credits
Alex Wheeler with reporting this vulnerability.
The original advisory is available at:
http://www.rem0te.com/public/images/sophos.pdf
|
Impact: A remote user can execute arbitrary code on the target system.
|
Solution: The vendor has issued a fix. The available fixes are listed on the vendor's web site at:
http://www.sophos.com/support/knowledgebase/article/3409.html
|
Vendor URL: www.sophos.com/support/knowledgebase/article/3409.html (Links to External Site)
|
Cause: Boundary error
|
Underlying OS: Linux (Any), MacOS, OpenVMS, UNIX (Any), Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 27 Jul 2005 14:08:04 -0400
Subject: http://www.sophos.com/support/knowledgebase/article/3409.html
|
> Advisory: Sophos buffer overflow vulnerability
> A buffer overflow vulnerability has been discovered in some shipping versions of
> Sophos Anti-Virus.
>
> Although theoretically a risk, Sophos has not seen any examples of malware attempting
> to exploit this vulnerability.
>
> Sophos is currently working to ensure that all of its products are protected against
> this issue.
|
|
