CVE-2005-1530

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2005-1530
Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References
Link Resource
http://securitytracker.com/id?1014488
http://www.idefense.com/application/poi/display?id=283&type=vulnerabilities&flashstatus=true Patch Vendor Advisory
http://www.securityfocus.com/bid/14270 Exploit Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/21373
http://securitytracker.com/id?1014488
http://www.idefense.com/application/poi/display?id=283&type=vulnerabilities&flashstatus=true Patch Vendor Advisory
http://www.securityfocus.com/bid/14270 Exploit Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/21373
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:sophos:sophos_anti-virus:3.4.6:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.78:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.78d:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.79:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.80:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.81:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.82:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.83:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.84:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.85:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.86:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.90:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:3.91:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_anti-virus:5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_mailmonitor:2.0:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_mailmonitor:2.1:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_mailmonitor_for_notes_domino:*:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_puremessage_anti-virus:4.6:*:*:*:*:*:*:*
cpe:2.3:a:sophos:sophos_small_business_suite:1.0:*:*:*:*:*:*:*
History

No history.

Information

Published : 2005-07-19 04:00

Updated : 2025-04-03 01:03

NVD link : CVE-2005-1530

Mitre link : CVE-2005-1530

CVE.ORG link : CVE-2005-1530

JSON object : View

Products Affected

sophos

  • sophos_small_business_suite
  • sophos_mailmonitor
  • sophos_mailmonitor_for_notes_domino
  • sophos_puremessage_anti-virus
  • sophos_anti-virus
CWE
NVD-CWE-Other