Sophos Anti-Virus Petite Plugin Denial of Service Vulnerability Date: Wednesday, November 01, 2006 @ 00:53:54 CST Topic: Security SECUNIA ADVISORY ID: SA22635 VERIFY ADVISORY: http://secunia.com/advisories/22635/ CRITICAL: Moderately critical IMPACT: DoS WHERE: >From remote SOFTWARE: Sophos Anti-Virus for Windows 6.x - http://secunia.com/product/12449/ Sophos Anti-Virus 5.x - http://secunia.com/product/5390/ Sophos Anti-Virus 4.x - http://secunia.com/product/5391/ Sophos Anti-Virus Small Business Edition - http://secunia.com/product/9822/ DESCRIPTION: A vulnerability has been reported in Sophos Anti-Virus, which can be exploited by malicious people to cause a DoS (Denial of Service). An unspecified error in the Petite plugin when processing Petite archives containing a large number of large sectors can be exploited to DoS the virus engine. Please see the vendor's advisory for a list of affected versions. SOLUTION: Updates are available for all products, but Sophos Anti-Virus for Macintosh (available in December 2006). PROVIDED AND/OR DISCOVERED BY: The vendor credits iDefense. ORIGINAL ADVISORY: Sophos: http://www.sophos.com/support/knowledgebase/article/7609.html This article comes from Ravens PHP Scripts https://www.ravenphpscripts.com The URL for this story is: https://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=2481