CVE-2007-4787

2007-09-1021:00:00

mitre

www.cve.org

AI Score

6.7

Confidence

Low

EPSS

0.094

Percentile

94.8%

JSON

The virus detection engine in Sophos Anti-Virus before 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with modified headers, which might allow remote attackers to bypass malware detection.

References

osvdb.org/37988

secunia.com/advisories/26726

www.securityfocus.com/bid/25574

www.sophos.com/support/knowledgebase/article/29146.html

www.vupen.com/english/advisories/2007/3078

exchange.xforce.ibmcloud.com/vulnerabilities/36502