漏洞关键信息 漏洞名称: Cross Site Scripting Vulnerability in Sophos Anti-Virus 受影响系统: Sophos Anti-Virus, version 6.5.4 R2 严重性: Medium 类别: Cross Site Scripting 作者: Context Information Security Ltd 公告日期: 6th September 2007 描述 A ZIP archive containing a virus signature with a malformed file name will cause a Cross Site Scripting vulnerability to be triggered from within the Sophos Anti Virus client. 分析 When Sophos anti-virus scans a specially crafted ZIP archive containing a XSS attack string, it will internally log the string. When this information is accessed via the Sophos client (SavMain.exe) the XSS attack string is unencoded. When the print function is called, the application can be used to run arbitrary code on the target machine from an external attacker's submitted file. 解决方案 Update to version 6.5.8 or 7.0. 厂商响应 Sophos have patched this issue in version 7.01. CVE 详情 This issue has been provisionally assigned a CVE candidate number of CVE-2007-4512 披露时间线 18 April 2007: Initial Discovery and vendor notification 19 April 2007: Vendor Response 21 August 2007: Second Vendor Response 6 September 2007: Coordinated Public Release 致谢 Michael Jordon of Context Information Security Ltd