Arbitrary File Hiding Vulnerability in Sophos Anti-Virus Software
CVE-2005-4680

Currently unrated

Key Information:

Vendor: Sophos
Status: Sophos Anti-virus
Vendor: CVE Published:; 31 December 2005

What is CVE-2005-4680?

Certain versions of Sophos Anti-Virus are susceptible to a file hiding vulnerability when processing specially crafted ARJ archives, which are not adequately scanned. This flaw enables remote attackers to conceal arbitrary files and data within these archives, potentially evading detection and compromising system security. Users of affected versions should prioritize updating their software to mitigate these risks.

References

http://www.vupen.com/english/advisories/2006/0347

vdb-entryx_refsource_VUPEN

http://www.sophos.com/support/knowledgebase/article/3803....

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/24345

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Jan 31, 2006
Vulnerability published
Dec 31, 2005