Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Sophos Small Business Suite 1.00 on Windows does not properly handle files whose names contain reserved MS-DOS device names such as (1) LPT1, (2) COM1, (3) AUX, (4) CON, or (5) PRN, which can allow malicious code to bypass detection when it is installed, copied, or executed.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sophos Small Business Suite保留设备名处理漏洞
Vulnerability Description
Sophos Small Business Suite是英国Sophos公司的一款针对小型用户的桌面和服务端防护病毒的解决方案。 Sophos Small Business Suite在扫描保留MS-DOS设备时存在问题,远程攻击者可以利用这个漏洞绕过恶意代码检测。 当尝试扫描以保留MS-DOS名命名的文件和目录时存在问题,这些设备名包括LPT1、COM1、AUX、CON、PRN等。如果恶意代码嵌入保留设备名,就可以绕过检测,如果恶意代码以保留设备名命名,也可以绕过Sophos的检测。 利用这个漏洞可以使
CVSS Information
N/A
Vulnerability Type
N/A