Heap-based Buffer Overflow in Sophos Antivirus Library
CVE-2005-2768

Currently unrated

Key Information:

Vendor
Sophos
Vendor
CVE Published:
2 September 2005

Summary

The Sophos Antivirus Library contains a heap-based buffer overflow vulnerability that can be exploited by remote attackers. This flaw arises when the library processes Visio files with crafted sub record lengths, enabling attackers to execute arbitrary code on affected systems. Products utilizing this library, such as Sophos Antivirus, PureMessage, and MailMonitor, are at risk, making it imperative for users to apply recommended security updates to mitigate potential exploitation.

References

EPSS Score

12% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.