CVE-2005-1530

Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value.

Published: Jul 19, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-1530
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
sophos / sophos_small_business_suite	1.0	1.0.x
sophos / sophos_anti-virus	3.83	3.83.x
sophos / sophos_anti-virus	3.91	3.91.x
sophos / sophos_mailmonitor_for_notes_domino	-	-
sophos / sophos_mailmonitor	2.1	2.1.x
sophos / sophos_anti-virus	3.80	3.80.x
sophos / sophos_anti-virus	3.81	3.81.x
sophos / sophos_anti-virus	3.86	3.86.x
sophos / sophos_anti-virus	3.78	3.78.x
sophos / sophos_anti-virus	3.82	3.82.x
sophos / sophos_anti-virus	3.79	3.79.x
sophos / sophos_puremessage_anti-virus	4.6	4.6.x
sophos / sophos_anti-virus	3.78d	3.78d.x
sophos / sophos_anti-virus	3.90	3.90.x
sophos / sophos_anti-virus	3.4.6	3.4.6.x
sophos / sophos_anti-virus	5.0.1	5.0.1.x
sophos / sophos_anti-virus	3.84	3.84.x
sophos / sophos_mailmonitor	2.0	2.0.x
sophos / sophos_anti-virus	3.85	3.85.x

Vulnerability Database

289,697

CVE-2005-1530