Vulnerability-Lookup

CERTA-2006-AVI-048

Vulnerability from certfr_avis - Published: - Updated:

None

Description

Une vulnérabilité dans le traitement des archives ARJ par Sophos Anti-Virus permet, par l'intermédiaire d'un fichier au format ARJ malicieusement constitué, d'échapper au contrôle des fichiers inclus dans l'archive.

Solution

La vulnérabilité a été corrigée dans les versions 5.1.4, 4.5.9, 4.6.9 et 4.02 de Sophos Anti-Virus. Le correctif est appliqué lors des mises à jour automatiques.

None

Impacted products

	Vendor	Product	Description
	Sophos	N/A	Sophos Anti-Virus versions 4.x.
	Sophos	N/A	Sophos Anti-Virus versions 5.x ;

References

Title

Publication Time

Tags

Bulletin de sécurité Sophos 3803 du 26 janvier 2006

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Sophos Anti-Virus versions 4.x.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Sophos",
          "scada": false
        }
      }
    },
    {
      "description": "Sophos Anti-Virus versions 5.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Sophos",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 dans le traitement des archives ARJ par Sophos\nAnti-Virus permet, par l\u0027interm\u00e9diaire d\u0027un fichier au format ARJ\nmalicieusement constitu\u00e9, d\u0027\u00e9chapper au contr\u00f4le des fichiers inclus\ndans l\u0027archive.\n\n## Solution\n\nLa vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans les versions 5.1.4, 4.5.9, 4.6.9 et\n4.02 de Sophos Anti-Virus. Le correctif est appliqu\u00e9 lors des mises \u00e0\njour automatiques.\n",
  "cves": [],
  "links": [],
  "reference": "CERTA-2006-AVI-048",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2006-01-27T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": null,
  "title": "Vuln\u00e9rabilit\u00e9 dans Sophos Anti-Virus",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Sophos 3803 du 26 janvier 2006",
      "url": "http://www.sophos.com/support/knowledgebase/article/3803.html"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CERTA-2006-AVI-048

Description

Solution

Tags

Sightings

Nomenclature