Bypass of Virus Scanning in Sophos Anti-Virus 3.78
CVE-2004-2088

Currently unrated

Key Information:

Vendor: Sophos
Status: Sophos Anti-virus
Vendor: CVE Published:; 12 February 2004

What is CVE-2004-2088?

Sophos Anti-Virus 3.78 is susceptible to a vulnerability that enables remote attackers to circumvent virus scanning mechanisms. This is achieved through the exploitation of Delivery Status Notifications (DSN) generated by qmail, where the original email content is not included in the bounce message. As a result, malicious emails can evade detection, posing a significant risk to users relying on this antivirus software.

References

http://securitytracker.com/id?1009042

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/10855

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/15192

vdb-entryx_refsource_XF

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
May 19, 2005
Vulnerability published
Feb 12, 2004