Anti-Virus for Windows

CVEs (4)

CVE	Vendor / Product	Risk	CVSS	EPSS	Published	Description
CVE-2006-0994	Sophos Anti-Virus for Windows	0.02	—	0.22	May 10, 2006	Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x before 5.2.1 and 4.x before 4.05, when cabinet file inspection is enabled, allows remote attackers to execute arbitrary code via a CAB file with "invalid folder count values," which leads to heap…
CVE-2023-1585	Avast\! Avg Antivirus	0.00	—	0.00	Apr 19, 2023	Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the Quarantine process, leading to arbitrary file/directory deletion. The issue was fixed with Avast and AVG Antivirus version 22.11 and virus definitions from 14…
CVE-2008-6903	Sophos Anti-Virus for Windows	0.00	—	0.07	Aug 6, 2009	Sophos Anti-Virus for Windows before 7.6.3, Anti-Virus for Windows NT/9x before 4.7.18, Anti-Virus for OS X before 4.9.18, Anti-Virus for Linux before 6.4.5, Anti-Virus for UNIX before 7.0.5, Anti-Virus for Unix and Netware before 4.37.0, Sophos EM Library, and Sophos small…
CVE-2007-4512	Sophos Anti-Virus for Windows	0.00	—	0.05	Sep 10, 2007	Cross-site scripting (XSS) vulnerability in Sophos Anti-Virus for Windows 6.x before 6.5.8 and 7.x before 7.0.1 allows remote attackers to inject arbitrary web script or HTML via an archive with a file that matches a virus signature and has a crafted filename that is not…

CVE-2006-0994May 10, 2006
Sophos
Anti-Virus for Windows
risk 0.02cvss —epss 0.22
Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x before 5.2.1 and 4.x before 4.05, when cabinet file inspection is enabled, allows remote attackers to execute arbitrary code via a CAB file with "invalid folder count values," which leads to heap…
CVE-2023-1585Apr 19, 2023
Avast\!
Avg Antivirus
risk 0.00cvss —epss 0.00
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the Quarantine process, leading to arbitrary file/directory deletion. The issue was fixed with Avast and AVG Antivirus version 22.11 and virus definitions from 14…
CVE-2008-6903Aug 6, 2009
Sophos
Anti-Virus for Windows
risk 0.00cvss —epss 0.07
Sophos Anti-Virus for Windows before 7.6.3, Anti-Virus for Windows NT/9x before 4.7.18, Anti-Virus for OS X before 4.9.18, Anti-Virus for Linux before 6.4.5, Anti-Virus for UNIX before 7.0.5, Anti-Virus for Unix and Netware before 4.37.0, Sophos EM Library, and Sophos small…
CVE-2007-4512Sep 10, 2007
Sophos
Anti-Virus for Windows
risk 0.00cvss —epss 0.05
Cross-site scripting (XSS) vulnerability in Sophos Anti-Virus for Windows 6.x before 6.5.8 and 7.x before 7.0.1 allows remote attackers to inject arbitrary web script or HTML via an archive with a file that matches a virus signature and has a crafted filename that is not…