header-logo
Suggest Exploit
vendor:
Antivirus
by:
milw0rm.com
7,5
CVSS
HIGH
Memory Corruption
119
CWE
Product Name: Antivirus
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2006

Sophos Antivirus CHM Chunk Name Length Memory Corruption Vulnerability

This vulnerability is related to the CHM (Compiled HTML Help) file format. It is caused by a boundary error in the processing of the CHM chunk name length. This can be exploited to cause a stack-based buffer overflow by tricking a user into opening a specially crafted CHM file. Successful exploitation may allow execution of arbitrary code.

Mitigation:

Users should avoid opening CHM files from untrusted sources.
Source

Exploit-DB raw data:

Sophos Antivirus CHM Chunk Name Length Memory Corruption Vulnerability

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/2911.chm (12092006-sophos_namelen.chm)

# milw0rm.com [2006-12-10]

Navigation

Suggest Exploit

Services By CQR