CVE-2008-6904 Information

Description

Multiple unspecified vulnerabilities in Sophos SAVScan 4.33.0 for Linux and possibly other products and versions allow remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via crafted files that have been packed with (1) armadillo (2) asprotect or (3) asprotectSKE.

Reference

http://marc.info/?l=bugtraq&m=122893252316489&w=2 http://www.ivizsecurity.com/security-advisory-iviz-sr-08015.html http://www.securityfocus.com/bid/32748 http://www.sophos.com/support/knowledgebase/article/50611.html https://exchange.xforce.ibmcloud.com/vulnerabilities/52443