Lucene search
SAINT CorporationSAINT:3EC3D0429CC5338041052665A9F0BFBCHistoryFeb 03, 2011 - 12:00 a.m.
Symantec Alert Management System PIN number buffer overflow
2011-02-0300:00:00
SAINT Corporation
www.saintcorporation.com
9
0.954 High
EPSS
Percentile
99.2%
Added: 02/03/2011
CVE: CVE-2010-0110
BID: 45936
Background
The Symantec Alert Management System 2 (AMS2) is used by multiple Symantec products. It includes an Intel Alert Handler service (hndlrsvc.exe). This service handles messages forwarded to it by the Alert Originator Manager, which listens on port 38292/TCP.
Problem
A buffer overflow vulnerability in **pagehndl.dll** allows remote attackers to execute arbitrary commands by sending a specially crafted PIN number to **msgsys.exe** through the Intel Alert Handler service.
Resolution
See Symantec Security Advisory SYM11-002 for fix information.
References
<http://www.zerodayinitiative.com/advisories/ZDI-11-031/>
Limitations
Exploit works on Symantec System Center 10.1.8.8000.
Platforms
Windows
Related
saint
saint
Symantec Alert Management System Intel Alert Handler modem string buffer overflow
2011-02-23 00:00:00
Symantec Alert Management System AMSSendAlertAck Buffer Overflow
2011-12-01 00:00:00
Symantec Alert Management System AMSSendAlertAck Buffer Overflow
2011-12-01 00:00:00
zdi
zdi
cvelist
cvelist
CVE-2010-0110
2011-01-31 20:00:00
CVE-2011-0688
2011-01-31 20:00:00
symantec
symantec
Symantec Intel Alert Management System Multiple Code Execution Issues
2011-01-26 08:00:00
securityvulns
securityvulns
cve
cve
CVE-2010-0110
2011-01-31 21:00:00
CVE-2011-0688
2011-01-31 21:00:00
prion
prion
Stack overflow
2011-01-31 21:00:00
Information disclosure
2011-01-31 21:00:00
checkpoint_advisories
checkpoint_advisories
openvas
openvas
Symantec Intel Alert Management System Multiple Vulnerabilities
2011-02-07 00:00:00
Symantec Intel Alert Management System Multiple Vulnerabilities
2011-02-07 00:00:00
nessus
nessus