Sophos Anti-Virus Library Visio Scanning Remote Heap Overflow Vulnerability

info
discussion
exploit
solution
references

Sophos Anti-Virus Library Visio Scanning Remote Heap Overflow Vulnerability

A remote heap overflow vulnerability exists in Sophos Anti-Virus Library when scanning Visio files. This issue is due to a failure of the library to properly bounds check user-supplied input prior to copying data to an internal memory buffer.