Denial of Service Vulnerability in Sophos Anti-Virus
CVE-2006-4839

Currently unrated

Key Information:

Vendor
Sophos
Vendor
CVE Published:
1 November 2006

Summary

Sophos Anti-Virus 5.1 is susceptible to a denial of service attack, which can be triggered by remote attackers sending files compressed with the Petite algorithm. These specially crafted files contain a large number of sections, ultimately leading to excessive memory consumption and service disruption. This vulnerability highlights the importance of implementing proper file handling and validation measures in antivirus software to prevent exploitation.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.