Sophos RMS / TAO Component Denial of Service

CVE-2009-0117

    Type

  • Sophos RMS / TAO Component DoS Vulnerability

    • Severity

  • Medium

    • Affected products

  • Sophos Remote Management System / TAO Component

    • Date

  • 2009-01-16

    • CVE Reference

  • CVE-2009-0117
Read more

The Remote Management System (RMS) router component of Sophos Anti-Virus utilises TAO, which is a third party developed message request broker that contains a vulnerability. This RMS component is used by a service in installations of Sophos software. By constructing a specially crafted packet it is possible to cause the service to terminate. This attack could be performed without authenticating to the remote system.