CVE-2004-0937

First published: Fri Nov 19 2004(Updated: )

Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

Credit: cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-historical
• collector/nvd-index
• agent/severity
• agent/references
• agent/weakness
• agent/author
• agent/type
• agent/description
• agent/event
• agent/last-modified-date
• agent/remedy
• agent/softwarecombine
• agent/first-publish-date
• agent/tags
• collector/mitre-cve
• source/MITRE
• vendor/eset software
• canonical/eset software nod32 antivirus
• version/eset software nod32 antivirus/1.0.11
• vendor/kaspersky lab
• canonical/kaspersky lab kaspersky anti-virus
• version/kaspersky lab kaspersky anti-virus/4.0
• vendor/sophos
• canonical/sophos sophos small business suite
• version/sophos sophos small business suite/1.0
• canonical/sophos sophos anti-virus
• version/sophos sophos anti-virus/3.83
• vendor/archive zip
• canonical/archive zip archive zip
• version/archive zip archive zip/1.13
• vendor/mcafee
• canonical/mcafee antivirus engine
• version/mcafee antivirus engine/4.3.20
• version/kaspersky lab kaspersky anti-virus/5.0
• vendor/ca
• canonical/ca etrust antivirus
• version/ca etrust antivirus/7.0_sp2
• version/sophos sophos anti-virus/3.80
• version/sophos sophos anti-virus/3.81
• version/eset software nod32 antivirus/1.0.12
• version/sophos sophos anti-virus/3.86
• version/sophos sophos anti-virus/3.78
• vendor/rav antivirus
• canonical/rav antivirus rav antivirus desktop
• version/rav antivirus rav antivirus desktop/8.6
• canonical/rav antivirus rav antivirus for mail servers
• version/rav antivirus rav antivirus for mail servers/8.4.2
• canonical/rav antivirus rav antivirus for file servers
• version/rav antivirus rav antivirus for file servers/1.0
• version/sophos sophos anti-virus/3.82
• version/sophos sophos anti-virus/3.79
• canonical/sophos sophos puremessage anti-virus
• version/sophos sophos puremessage anti-virus/4.6
• version/sophos sophos anti-virus/3.78d
• version/sophos sophos anti-virus/3.4.6
• canonical/ca etrust secure content manager
• version/ca etrust secure content manager/1.0-sp1
• version/eset software nod32 antivirus/1.0.13
• version/sophos sophos anti-virus/3.84
• version/kaspersky lab kaspersky anti-virus/3.0
• version/sophos sophos anti-virus/3.85
• vendor/broadcom
• canonical/broadcom brightstor arcserve backup
• version/broadcom brightstor arcserve backup/11.1
• canonical/broadcom etrust antivirus
• version/broadcom etrust antivirus/7.0
• version/broadcom etrust antivirus/7.1
• canonical/broadcom etrust antivirus gateway
• version/broadcom etrust antivirus gateway/7.0
• version/broadcom etrust antivirus gateway/7.1
• canonical/broadcom etrust ez antivirus
• version/broadcom etrust ez antivirus/6.1
• version/broadcom etrust ez antivirus/6.2
• version/broadcom etrust ez antivirus/6.3
• canonical/broadcom etrust ez armor
• version/broadcom etrust ez armor/2.0
• version/broadcom etrust ez armor/2.3
• version/broadcom etrust ez armor/2.4
• canonical/broadcom etrust intrusion detection
• version/broadcom etrust intrusion detection/1.4.1.13
• version/broadcom etrust intrusion detection/1.4.5
• version/broadcom etrust intrusion detection/1.5
• canonical/broadcom etrust secure content manager
• version/broadcom etrust secure content manager/1.0
• version/broadcom etrust secure content manager/1.1
• canonical/broadcom inoculateit
• version/broadcom inoculateit/6.0
• vendor/suse
• canonical/suse suse linux
• version/suse suse linux/9.2
• vendor/mandrakesoft
• canonical/mandrakesoft mandrake linux
• version/mandrakesoft mandrake linux/10.1
• vendor/gentoo
• canonical/gentoo linux
• version/gentoo linux/1.4