Back to search
CVE-2004-0552
Published: Sep 28, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
Sophos Small Business Suite 1.00 on Windows does not properly handle files whose names contain reserved MS-DOS device names such as (1) LPT1, (2) COM1, (3) AUX, (4) CON, or (5) PRN, which can allow malicious code to bypass detection when it is installed, copied, or executed.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20040922 Sophos Small Business Suite Reserved Device Name Handling Vulnerability
third-party-advisory
x_refsource_IDEFENSE
http://www.seifried.org/security/advisories/kssa-005.html
x_refsource_MISC
sophos-business-security-bypass(17468)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now