Computer Tips -Tech Info

Sans has the story on a security vulnerability involving specifically crafted .cab files affecting a WIDE range of SOPHOS antivirus products (from desktop to server.)

The main result of the vulnerability is arbitrary code execution, which is a bad thing…. PureMessage and MailMonitor users may be more at risk because, of course, it requires scanning of .cab files to be enabled.

sophos has a KB article on the issue.

Of course, this is a remotely exploitable vulnerability and should be a very high priority. Updates for most affected products have been available since April 28th. (Some were patched on May 5th.)

Popularity: 1% [?]

Similar Posts

• Symantec Antivirus Remotely Exploitable Vulnerability
• Serious Symantec Antivirus Vulnerability
• Two critical fixes from Microsoft on December patch Tuesday
• Apple iTunes vulnerability on Windows
• Zeroday Internet Explorer vulnerability update

This entry was posted on Wednesday, May 10th, 2006 at 10:18 am and is filed under Security, Security-updates. You can follow any responses to this entry through the RSS 2.0 feed. Responses are currently closed, but you can trackback from your own site.