Multiple Sophos Products CAB File Scan Evasion Vulnerability

Multiple Sophos Products CAB File Scan Evasion Vulnerability

Multiple Sophos products are prone to a vulnerability that may allow certain compressed archives to bypass the scan engine.

Successful exploits will allow attackers to distribute files containing malicious code that the antivirus application will fail to detect.

Versions prior to the following are vulnerable:

Sophos Anti-Virus for Windows 7.6.8
Sophos Anti-Virus for Windows 4.7.23
Sophos Anti-Virus for OS X 4.9.23/7.02
Sophos Anti-Virus for Linux 6.6.3
Sophos Anti-Virus for UNIX 7.0.10
Sophos Anti-Virus for Unix 4.42.0
Sophos Anti-Virus for Netware 4.42.0
Sophos Email Appliance 3.1.4.1
Sophos Web Appliance 3.0.0
Pure Message for Unix 5.5.5