Sophos Anti-Virus CAB, RAR and LZH Scanning Evasion
Medium Nessus Plugin ID 26002
SynopsisThe remote Windows host has an application that is affected by multiple vulnerabilities.
DescriptionThe version of Sophos Anti-Virus installed on the remote host reportedly contains several problems involving the processing of 'CAB' 'RAR' and 'LZH' files which may allow an attacker to evade the anti- virus scanning by sending a specially-malformed archive.
In addition, an attacker may exploit an HTML injection vulnerability when processing a ZIP file.
SolutionUpdate to Sophos Anti-Virus engine version 2.49.0 or later.