Sophos

Online support

Product maintenance

Contact support

Support services

Vulnerabilities reported by iDefense in 2006

This article discusses the four vulnerabilities disclosed by iDefense in December 2006. It should be noted that these vulnerabilities represent theoretical risks, and there were no known exploits of these vulnerabilities at the time of publication (18 December, 2006).

Petite Plugin Vulnerability

A handcrafted Petite archive containing a large number of large sectors can cause a Denial of Service in the virus engine.

Product NameAffected versionsNon-affected versionsUpdate available
Sophos Anti-Virus + Application Control for Windows 2000/XP/20036.0.4 and below6.0.5 and above26/10/06
Sophos Anti-Virus for Windows 2000+6.0.4 and below6.0.5 and above26/10/06
Sophos Endpoint Security + Application Control 2000/XP/2003 6.0.4 and below6.0.5 and abovew/c 29/10/06
Sophos Endpoint Security6.0.4 and below6.0.5 and abovew/c 29/10/06
Sophos Anti-Virus for Windows 2000+5.2.6 and below5.2.7 and above26/10/06
Sophos Anti-Virus for Linux (on-access)5.0.9 and below5.0.10 and abovew/c 29/10/06
Sophos Anti-Virus for AIX (PowerPC)4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for FreeBSD 6+4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for FreeBSD 5.2+4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for FreeBSD 3+4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for FreeBSD 4.5+4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for HP-UX (HP-PA)4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for HP-UX (Itanium)4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for Linux (AMD64, glibc 2.3)4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for Linux (Intel, libc6)4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for Linux (Intel, libc6-glibc2.2)4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for Solaris (SPARC)4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for Solaris (Intel)4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for Tru64 UNIX (Alpha)4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for Windows 95/98/Me4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for Windows NT/2000/XP4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for NetWare4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for Windows NT4.6.4 and below4.6.5 and above26/10/06
Sophos Anti-Virus for Mac OS 8/94.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for Mac OS X4.8.4 and below4.8.5 and above26/10/06
Sophos Anti-Virus for OpenVMS4.10 and below4.11 and above26/10/06
Sophos Anti-Virus for OS/24.10 and below4.11 and above26/10/06
PureMessage for UNIXengine 4.11 and belowengine 4.12 and aboveNovember 2006
ES4000engine 4.11 and belowengine 4.12 and aboveNovember 2006

Other vulnerabilities

Note: Sophos believes that these vulnerabilities pose a theoretical threat only, and will provide fixes for these in its ongoing maintenance releases.

RAR denial of service vulnerability

A malformed RAR file, handcrafted to have very specific characteristics on certain settings, will send the scanning engine into an infinite loop, consuming all processor resources. The process must be manually killed by the user.

CHM File heap overflow vulnerability (DoS)

A heap overflow will occur when scanning CHM files, if they have been crafted with a combination of very specific values for certain settings.

CHM name length memory consumption vulnerability (DoS)

A malformed CHM file with certain characteristics regarding the CHM chunk header will cause a memory corruption to occur.

Product NameAffected versionsNon - affected versionsUpdate available
Sophos Anti-Virus + Application Control for Windows 2000/XP/20036.0.5 and below6.0.6 and aboveNovember 2006
Sophos Anti-Virus for Windows 2000+6.0.5 and below6.0.6 and aboveNovember 2006
Sophos Endpoint Security + Application Control 2000/XP/2003 6.0.5 and below6.0.6 and aboveNovember 2006
Sophos Endpoint Security6.0.5 and below6.0.6 and aboveNovember 2006
Sophos Anti-Virus for Windows 2000+5.2.7 and below5.2.8 and aboveNovember 2006
Sophos Anti-Virus for Linux (on-access)5.0.10 and below5.1.0 and aboveNovember 2006
Sophos Anti-Virus for AIX (PowerPC)4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for FreeBSD 6+4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for FreeBSD 5.2+4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for FreeBSD 3+4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for FreeBSD 4.5+4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for HP-UX (HP-PA)4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for HP-UX (Itanium)4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for Linux (AMD64, glibc 2.3)4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for Linux (Intel, libc6)4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for Linux (Intel, libc6-glibc2.2)4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for Solaris (SPARC)4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for Solaris (Intel)4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for Tru64 UNIX (Alpha)4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for Windows 95/98/Me4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for Windows NT/2000/XP4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for NetWare4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for Windows NT4.6.5 and below4.6.6 and aboveNovember 2006
Sophos Anti-Virus for Mac OS 8/94.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for Mac OS X4.8.5 and below4.8.6 and aboveNovember 2006
Sophos Anti-Virus for OpenVMS4.11 and below4.12 and aboveNovember 2006
Sophos Anti-Virus for OS/24.11 and below4.12 and aboveNovember 2006
PureMessage for UNIXengine 4.11 and belowengine 4.12 and aboveNovember 2006
ES4000engine 4.11 and belowengine 4.12 and aboveNovember 2006

If you need more information or guidance, then please contact technical support.