CVE-2004-0552 Information

Feb 14, 2021 cve

Description

Sophos Small Business Suite 1.00 on Windows does not properly handle files whose names contain reserved MS-DOS device names such as (1) LPT1 (2) COM1 (3) AUX (4) CON or (5) PRN which can allow malicious code to bypass detection when it is installed copied or executed.

Reference

http://www.idefense.com/application/poi/display?id=143&type=vulnerabilities http://www.seifried.org/security/advisories/kssa-005.html https://exchange.xforce.ibmcloud.com/vulnerabilities/17468

Share on: