CVE-2007-4578

NONECVSS 0.0

0.0

Sophos Anti-Virus for Windows and for Unix/Linux before 2.48.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted UPX packed file, resulting from an "integer cast around". NOTE: as of 20070828, the vendor says this is a DoS and the researcher says this allows code execution, but the researcher is reliable.

🔗 References (20)

cve@mitrehttp://secunia.com/advisories/26580
cve@mitrehttp://securityreason.com/securityalert/3072
cve@mitrehttp://securitytracker.com/id?1018608
cve@mitrehttp://www.nruns.com/security_advisory_sophos_upx_infinite_loop_dos.php
cve@mitrehttp://www.securityfocus.com/archive/1/477720/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/477864/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/477882/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/25428
cve@mitrehttp://www.sophos.com/support/knowledgebase/article/28407.html
cve@mitrehttp://www.vupen.com/english/advisories/2007/2972
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/26580
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/3072
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1018608
af854a3a-2127-422b-91ae-364da2661108http://www.nruns.com/security_advisory_sophos_upx_infinite_loop_dos.php
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/477720/100/0/threaded

Is Your Infrastructure Affected by CVE-2007-4578?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-4578

📅 Published

🔄 Last Modified

🔗 References (20)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-4578?