CVE-2010-2308

Unspecified vulnerability in the filter driver (savonaccessfilter.sys) in Sophos Anti-Virus before 7.6.20 allows local users to gain privileges via crafted arguments to the NtQueryAttributesFile function.

Published: Jun 16, 2010
Updated: Nov 9, 2025
CVE: CVE-2010-2308
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
sophos / anti-virus	4.04	4.04.x
sophos / anti-virus	5.2	5.2.x
sophos / anti-virus	3.83	3.83.x
sophos / anti-virus	7.6.15	7.6.15.x
sophos / anti-virus	3.86	3.86.x
sophos / anti-virus	7.6.14	7.6.14.x
sophos / anti-virus	3.4.6	3.4.6.x
sophos / anti-virus	5.0.2	5.0.2.x
sophos / anti-virus	3.80	3.80.x
sophos / anti-virus	7.0	7.0.x
sophos / anti-virus	3.96.0	3.96.0.x
sophos / anti-virus	4.5.12	4.5.12.x
sophos / anti-virus	3.81	3.81.x
sophos / anti-virus	7.6.16	7.6.16.x
sophos / anti-virus	4.5.11	4.5.11.x
sophos / anti-virus	3.79	3.79.x
sophos / anti-virus	4.7.1	4.7.1.x
sophos / anti-virus	4.03	4.03.x
sophos / anti-virus	7.6.17	7.6.17.x
sophos / anti-virus	4.33.0	4.33.0.x
sophos / anti-virus	6.5	6.5.x
sophos / anti-virus	4.7.2	4.7.2.x
sophos / anti-virus	5.0.4	5.0.4.x
sophos / anti-virus	3.90	3.90.x
sophos / anti-virus	7.0.5	7.0.5.x
sophos / anti-virus	5.2.1	5.2.1.x
sophos / anti-virus	3.78	3.78.x
sophos / anti-virus	7.6.18	7.6.18.x
sophos / anti-virus	4.05	4.05.x
sophos / anti-virus	4.5.3	4.5.3.x
sophos / anti-virus	3.78d	3.78d.x
sophos / anti-virus	3.95	3.95.x
sophos / anti-virus	5.0.9	5.0.9.x
sophos / anti-virus	3.82	3.82.x
sophos / anti-virus	-	7.6.19.x
sophos / anti-virus	4.5.4	4.5.4.x
sophos / anti-virus	7.6	7.6.x
sophos / anti-virus	3.84	3.84.x
sophos / anti-virus	6.0.4	6.0.4.x
sophos / anti-virus	5.1	5.1.x
sophos / anti-virus	5.0.1	5.0.1.x
sophos / anti-virus	3.85	3.85.x
sophos / anti-virus	3.91	3.91.x

Vulnerability Database

300,926

CVE-2010-2308

Deep Security Visibility Without the Complexity