Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-hgv8-r364-cmqx

Опубликовано: 01 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x before 5.2.1 and 4.x before 4.05, when cabinet file inspection is enabled, allows remote attackers to execute arbitrary code via a CAB file with "invalid folder count values," which leads to heap corruption.

Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x before 5.2.1 and 4.x before 4.05, when cabinet file inspection is enabled, allows remote attackers to execute arbitrary code via a CAB file with "invalid folder count values," which leads to heap corruption.

Ссылки

EPSS

Процентиль: 97%
0.42705
Средний

CVE ID

CVE-2006-0994

Связанные уязвимости

nvd логотип

CVE-2006-0994

nvd
больше 19 лет назад

Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x before 5.2.1 and 4.x before 4.05, when cabinet file inspection is enabled, allows remote attackers to execute arbitrary code via a CAB file with "invalid folder count values," which leads to heap corruption.

EPSS

Процентиль: 97%
0.42705
Средний

CVE ID

CVE-2006-0994