Описание
Sophos virus detection engine 2.75 on Linux and Unix, as used in Sophos Email Appliance, Pure Message for Unix, and Sophos Anti-Virus Interface (SAVI), allows remote attackers to cause a denial of service (engine crash) via zero-length MIME attachments.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:h:sophos:email_appliance:es1000:*:*:*:*:*:*:*
cpe:2.3:h:sophos:email_appliance:es4000:*:*:*:*:*:*:*
Одно из
cpe:2.3:a:sophos:es1000:*:*:*:*:*:*:*:*
cpe:2.3:a:sophos:es4000:*:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:*:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_puremessage_anti-virus:*:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.06048
Низкий
5 Medium
CVSS2
Дефекты
CWE-16
Связанные уязвимости
github
почти 4 года назад
Sophos virus detection engine 2.75 on Linux and Unix, as used in Sophos Email Appliance, Pure Message for Unix, and Sophos Anti-Virus Interface (SAVI), allows remote attackers to cause a denial of service (engine crash) via zero-length MIME attachments.
EPSS
Процентиль: 91%
0.06048
Низкий
5 Medium
CVSS2
Дефекты
CWE-16