CVE-2004-0937

Exp

Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

Published: 2005-02-09 Last update: 2026-04-16 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2004-0937 is rated High Exploit Risk (72.7/100): CVSS High severity, with high exploitation likelihood (EPSS 13.20%, 94th percentile). 2 public exploit reference(s) are indexed (Exploit-DB). Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2004-0937

EDB-ID Source Kind Published Link
629 exploit_db edb 2004-11-14 Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2004-0937

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2025-03-30 22.07% 13.20% -8.87%
2 2025-03-29 13.20% 22.07% +8.87%
3 2025-03-17 13.20%

Full EPSS history (8 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2004-0937

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
7.5 2.0 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:P)
Partial integrity impact.
Availability impact (A:P)
Partial availability impact.
 10.0 6.4 [email protected]

Weakness enumeration for CVE-2004-0937

Affected software / configurations for CVE-2004-0937

Vendor Product Version Raw CPE
archive_zip archive_zip 1.13 cpe:2.3:a:archive_zip:archive_zip:1.13:*:*:*:*:*:*:*
broadcom brightstor_arcserve_backup 11.1 cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*
broadcom etrust_antivirus 7.0 cpe:2.3:a:broadcom:etrust_antivirus:7.0:*:*:*:*:*:*:*
broadcom etrust_antivirus 7.1 cpe:2.3:a:broadcom:etrust_antivirus:7.1:*:*:*:*:*:*:*
broadcom etrust_antivirus_gateway 7.0 cpe:2.3:a:broadcom:etrust_antivirus_gateway:7.0:*:*:*:*:*:*:*
broadcom etrust_antivirus_gateway 7.1 cpe:2.3:a:broadcom:etrust_antivirus_gateway:7.1:*:*:*:*:*:*:*
broadcom etrust_ez_antivirus 6.1 cpe:2.3:a:broadcom:etrust_ez_antivirus:6.1:*:*:*:*:*:*:*
broadcom etrust_ez_antivirus 6.2 cpe:2.3:a:broadcom:etrust_ez_antivirus:6.2:*:*:*:*:*:*:*
broadcom etrust_ez_antivirus 6.3 cpe:2.3:a:broadcom:etrust_ez_antivirus:6.3:*:*:*:*:*:*:*
broadcom etrust_ez_armor 2.0 cpe:2.3:a:broadcom:etrust_ez_armor:2.0:*:*:*:*:*:*:*
broadcom etrust_ez_armor 2.3 cpe:2.3:a:broadcom:etrust_ez_armor:2.3:*:*:*:*:*:*:*
broadcom etrust_ez_armor 2.4 cpe:2.3:a:broadcom:etrust_ez_armor:2.4:*:*:*:*:*:*:*
broadcom etrust_intrusion_detection 1.4.1.13 cpe:2.3:a:broadcom:etrust_intrusion_detection:1.4.1.13:*:*:*:*:*:*:*
broadcom etrust_intrusion_detection 1.4.5 cpe:2.3:a:broadcom:etrust_intrusion_detection:1.4.5:*:*:*:*:*:*:*
broadcom etrust_intrusion_detection 1.5 cpe:2.3:a:broadcom:etrust_intrusion_detection:1.5:*:*:*:*:*:*:*
broadcom etrust_secure_content_manager 1.0 cpe:2.3:a:broadcom:etrust_secure_content_manager:1.0:*:*:*:*:*:*:*
broadcom etrust_secure_content_manager 1.1 cpe:2.3:a:broadcom:etrust_secure_content_manager:1.1:*:*:*:*:*:*:*
broadcom inoculateit 6.0 cpe:2.3:a:broadcom:inoculateit:6.0:*:*:*:*:*:*:*
ca etrust_antivirus 7.0_sp2 cpe:2.3:a:ca:etrust_antivirus:7.0_sp2:*:*:*:*:*:*:*
ca etrust_secure_content_manager 1.0 cpe:2.3:a:ca:etrust_secure_content_manager:1.0:sp1:*:*:*:*:*:*
eset_software nod32_antivirus 1.0.11 cpe:2.3:a:eset_software:nod32_antivirus:1.0.11:*:*:*:*:*:*:*
eset_software nod32_antivirus 1.0.12 cpe:2.3:a:eset_software:nod32_antivirus:1.0.12:*:*:*:*:*:*:*
eset_software nod32_antivirus 1.0.13 cpe:2.3:a:eset_software:nod32_antivirus:1.0.13:*:*:*:*:*:*:*
kaspersky_lab kaspersky_anti-virus 3.0 cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:3.0:*:*:*:*:*:*:*
kaspersky_lab kaspersky_anti-virus 4.0 cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:4.0:*:*:*:*:*:*:*
kaspersky_lab kaspersky_anti-virus 5.0 cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:5.0:*:*:*:*:*:*:*
mcafee antivirus_engine 4.3.20 cpe:2.3:a:mcafee:antivirus_engine:4.3.20:*:*:*:*:*:*:*
rav_antivirus rav_antivirus_desktop 8.6 cpe:2.3:a:rav_antivirus:rav_antivirus_desktop:8.6:*:*:*:*:*:*:*
rav_antivirus rav_antivirus_for_file_servers 1.0 cpe:2.3:a:rav_antivirus:rav_antivirus_for_file_servers:1.0:*:*:*:*:*:*:*
rav_antivirus rav_antivirus_for_mail_servers 8.4.2 cpe:2.3:a:rav_antivirus:rav_antivirus_for_mail_servers:8.4.2:*:*:*:*:*:*:*
sophos sophos_anti-virus 3.4.6 cpe:2.3:a:sophos:sophos_anti-virus:3.4.6:*:*:*:*:*:*:*
sophos sophos_anti-virus 3.78 cpe:2.3:a:sophos:sophos_anti-virus:3.78:*:*:*:*:*:*:*
sophos sophos_anti-virus 3.78d cpe:2.3:a:sophos:sophos_anti-virus:3.78d:*:*:*:*:*:*:*
sophos sophos_anti-virus 3.79 cpe:2.3:a:sophos:sophos_anti-virus:3.79:*:*:*:*:*:*:*
sophos sophos_anti-virus 3.80 cpe:2.3:a:sophos:sophos_anti-virus:3.80:*:*:*:*:*:*:*
sophos sophos_anti-virus 3.81 cpe:2.3:a:sophos:sophos_anti-virus:3.81:*:*:*:*:*:*:*
sophos sophos_anti-virus 3.82 cpe:2.3:a:sophos:sophos_anti-virus:3.82:*:*:*:*:*:*:*
sophos sophos_anti-virus 3.83 cpe:2.3:a:sophos:sophos_anti-virus:3.83:*:*:*:*:*:*:*
sophos sophos_anti-virus 3.84 cpe:2.3:a:sophos:sophos_anti-virus:3.84:*:*:*:*:*:*:*
sophos sophos_anti-virus 3.85 cpe:2.3:a:sophos:sophos_anti-virus:3.85:*:*:*:*:*:*:*
sophos sophos_anti-virus 3.86 cpe:2.3:a:sophos:sophos_anti-virus:3.86:*:*:*:*:*:*:*
sophos sophos_puremessage_anti-virus 4.6 cpe:2.3:a:sophos:sophos_puremessage_anti-virus:4.6:*:*:*:*:*:*:*
sophos sophos_small_business_suite 1.0 cpe:2.3:a:sophos:sophos_small_business_suite:1.0:*:*:*:*:*:*:*
gentoo linux cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*
gentoo linux 1.4 cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*
mandrakesoft mandrake_linux 10.1 cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:*:*:*:*:*:*
mandrakesoft mandrake_linux 10.1 cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:x86_64:*:*:*:*:*
suse suse_linux 9.2 cpe:2.3:o:suse:suse_linux:9.2:*:*:*:*:*:*:*

References for CVE-2004-0937

cvelogic Threat Intelligence