Bypassing Antivirus Protection via Zeroed Headers in Sophos Anti-Virus

Bypassing Antivirus Protection via Zeroed Headers in Sophos Anti-Virus

CVE-2004-0937 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

Learn more about our Web Application Penetration Testing UK.