Sophos antivirus vulnerabilities…



Sans has the story on a security vulnerability involving specifically crafted .cab files affecting a WIDE range of SOPHOS antivirus products (from desktop to server.)

The main result of the vulnerability is arbitrary code execution, which is a bad thing…. PureMessage and MailMonitor users may be more at risk because, of course, it requires scanning of .cab files to be enabled.


sophos has a KB article on the issue.

Of course, this is a remotely exploitable vulnerability and should be a very high priority. Updates for most affected products have been available since April 28th. (Some were patched on May 5th.)

Related Posts

Blog Traffic Exchange Related Posts
  • Windows updates for February could set record There could be a record number of vulnerabilities addressed next week when Microsoft releases an expected dozen updates for its Windows and Office products. (According to Brian Krebs at the Security Fix.) Tuesday February 13th is the date scheduled for the release of updates. One critical udpate will affect Microsoft's......
  • Network Security guide for the home or small business network - Part 5 - Update your software Okay - so after the last article you've inventoried what software you use on a PC and you know what services (server's) the pc runs that you've told it to. You even know what passes as "normal" startup programs. Now it's time to put that to use. It's time to......
  • Microsoft December 2005 Security updates Sans has the tip that information on the critical Windows updates expected tomorrow from Microsoft has started to be released. MS 05-54: Cumulative Security Update for Internet Explorer This will hopefully patch the javascript issues... MS 05-55: Vulnerability in Windows Kernel Could Allow Elevation of Privilege. More later in the......
Blog Traffic Exchange Related Websites
  • Bushnell Tour V2 Series Pinseeker Rangefinder User Reviews Send this to a friend Bushnell Tour V2 Series Pinseeker Rangefinder Manufacturer: Bushnell Customer Rating: List Price: Varies based on product options Sale Price: View Sale Price Availibility: View Product Availability Buy Now Product Description The ultimate laser rangefinder for tournament play and avid golfers, the Bushnell......
  • What is Patch Tuesday? Excellent explanation of Patch Tuesday by TMI Engineering Patch Tuesday is the second Tuesday of each month, the day on which Microsoft releases security patches. Starting with Windows 98, Microsoft included a "Windows Update" system, that would check for patches to Windows and its components which Microsoft would release intermittently. With......
  • Blogging for Business Pt 2 Continued from "Blogging for Business pt 1" So why is there so much fervor surrounding business blogs and corporate blogs? Unlike corporate websites, business blogs are extremely cost effective to launch and quite surprisingly easy to maintain, because there are so many powerful and easy to use tools out there.......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site