Vulnerability Description
The virus detection engine in Sophos Anti-Virus before 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with modified headers, which might allow remote attackers to bypass malware detection.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sophos | Scanning Engine | 2.30.4 |
| Sophos | Sophos Anti-Virus | 3.4.6 |
Related Weaknesses (CWE)
References
- http://osvdb.org/37988
- http://secunia.com/advisories/26726
- http://www.securityfocus.com/bid/25574
- http://www.sophos.com/support/knowledgebase/article/29146.htmlPatch
- http://www.vupen.com/english/advisories/2007/3078
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36502
- http://osvdb.org/37988
- http://secunia.com/advisories/26726
- http://www.securityfocus.com/bid/25574
- http://www.sophos.com/support/knowledgebase/article/29146.htmlPatch
- http://www.vupen.com/english/advisories/2007/3078
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36502
FAQ
What is CVE-2007-4787?
CVE-2007-4787 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The virus detection engine in Sophos Anti-Virus before 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with modified headers, which might allow remote attackers to bypas...
How severe is CVE-2007-4787?
CVE-2007-4787 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4787?
Check the references section above for vendor advisories and patch information. Affected products include: Sophos Scanning Engine, Sophos Sophos Anti-Virus.