Multiple Sophos Products MIME Attachments Denial of Service Vulnerability
BID:30110
Info
Multiple Sophos Products MIME Attachments Denial of Service Vulnerability
| Bugtraq ID: | 30110 |
| Class: | Unknown |
| CVE: |
CVE-2008-3177 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 09 2008 12:00AM |
| Updated: | May 07 2015 05:27PM |
| Credit: | This issue was disclosed by Sophos. |
| Vulnerable: |
Sophos Sophos Anti-Virus Interface (SAVI) 0 Sophos Pure Message for UNIX 0 Sophos Email Appliance 0 |
| Not Vulnerable: | |
Discussion
Multiple Sophos Products MIME Attachments Denial of Service Vulnerability
Multiple Sophos Products are prone to a denial-of-service vulnerability when scanning certain MIME attachments.
Attackers can leverage this issue to cause multiple terminations of the affected products and deny service to legitimate users.
NOTE: The vendor states that this issue occurs only when the applications are running on Linux or UNIX.
Sophos Email Appliance and Pure Message for UNIX instances that are using 4.30 virus data/2.74 engine are affected.
The Sophos Anti-Virus Interface (SAVI) is also affected.
Multiple Sophos Products are prone to a denial-of-service vulnerability when scanning certain MIME attachments.
Attackers can leverage this issue to cause multiple terminations of the affected products and deny service to legitimate users.
NOTE: The vendor states that this issue occurs only when the applications are running on Linux or UNIX.
Sophos Email Appliance and Pure Message for UNIX instances that are using 4.30 virus data/2.74 engine are affected.
The Sophos Anti-Virus Interface (SAVI) is also affected.
Exploit / POC
Multiple Sophos Products MIME Attachments Denial of Service Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Multiple Sophos Products MIME Attachments Denial of Service Vulnerability
Solution:
The vendor addressed this issue for Sophos Email Appliance and Pure Message for Unix by automatically rolling back to 4.30 virus data/2.7 engine. SAVI is being updated through the automatic release of virus data.
Solution:
The vendor addressed this issue for Sophos Email Appliance and Pure Message for Unix by automatically rolling back to 4.30 virus data/2.7 engine. SAVI is being updated through the automatic release of virus data.
References
Multiple Sophos Products MIME Attachments Denial of Service Vulnerability
References:
References: