Race Condition Vulnerability in Sophos Anti-Virus 3.93
CVE-2005-1551

Currently unrated

Key Information:

Vendor: Sophos
Status: Sophos Anti-virus
Vendor: CVE Published:; 14 May 2005

Summary

Sophos Anti-Virus 3.93 exhibits a race condition vulnerability that occurs when downloaded files are written to disk without being scanned for viruses. This flaw may enable remote attackers to circumvent virus protections by executing a malicious file before the antivirus software can scan it during system reboot. Consequently, the timing of file execution poses a significant risk, allowing potential exposure to malware that could otherwise be detected.

References

http://marc.info/?l=bugtraq&m=111566827411376&w=2

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/20519

vdb-entryx_refsource_XF

Timeline

Vulnerability published
May 14, 2005
Vulnerability Reserved
May 14, 2005