Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:B451BFA0756D5A43955291FC7AD8B0B2
HistorySep 20, 2007 - 12:00 a.m.

Symantec Norton NavComUI ActiveX control vulnerability

2007-09-2000:00:00
SAINT Corporation
www.saintcorporation.com
8

0.904 High

EPSS

Percentile

98.5%

JSON

Added: 09/20/2007
CVE: CVE-2007-2955
BID: 24983
OSVDB: 36477

Background

The Symantec Norton product suite includes antivirus, firewall, and other security functions.

Problem

Vulnerabilities in the AxSysListView32 and AxSysListView32OAA ActiveX controls, implemented by the NavComUI.dll library within Norton products, allows command execution when handling specially crafted β€œAnomalyList” and β€œAnomaly” properties.

Resolution

A fix is available through the LiveUpdate feature within Norton products.

References

<http://secunia.com/secunia_research/2007-53/advisory/&gt;

Limitations

Exploit works on Symantec Norton Internet Security 2006.

Platforms

Windows XP

Related

checkpoint_advisories 1
prion 1
cve 1
saint 3
checkpoint_advisories
checkpoint_advisories
Symantec Products ActiveX Control NavComUI.dll Code Execution (CVE-2007-2955)
2007-10-10 00:00:00
prion
prion
Input validation
2007-08-09 21:17:00
cve
cve
CVE-2007-2955
2007-08-09 21:17:00
saint
saint
Symantec Norton NavComUI ActiveX control vulnerability
2007-09-20 00:00:00
Symantec Norton NavComUI ActiveX control vulnerability
2007-09-20 00:00:00
Symantec Norton NavComUI ActiveX control vulnerability
2007-09-20 00:00:00

0.904 High

EPSS

Percentile

98.5%

JSON
Related for SAINT:B451BFA0756D5A43955291FC7AD8B0B2
checkpoint_advisories1prion1cve1saint3