Symantec AntiVirus Scan Engine Administrative Interface HTTP Header Overflow

2005-10-04T03:51:44
ID OSVDB:19854
Type osvdb
Reporter OSVDB
Modified 2005-10-04T03:51:44

Description

Vulnerability Description

A remote overflow exists in Symantec AntiVirus Scan Engine. The administrative Scan Engine Web service fails to perform proper bounds checking resulting in a heap-based buffer overflow. With a specially crafted HTTP header containing a negative value, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Upgrade to version 4.3.12 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in Symantec AntiVirus Scan Engine. The administrative Scan Engine Web service fails to perform proper bounds checking resulting in a heap-based buffer overflow. With a specially crafted HTTP header containing a negative value, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

Vendor URL: http://www.symantec.com/ Vendor Specific Advisory URL Security Tracker: 1015001 Secunia Advisory ID:17049 Other Advisory URL: http://www.idefense.com/application/poi/display?id=314&type=vulnerabilities Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0086.html Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0085.html ISS X-Force ID: 22519 Generic Informational URL: http://news.com.com/Bug+spotted+in+Symantec+antivirus/2100-1002_3-5889518.html CVE-2005-2758 Bugtraq ID: 15001