Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:E67F7FB09A12825A4BD58C46615B3542
HistoryJun 13, 2006 - 12:00 a.m.

Symantec real-time scan service buffer overflow

2006-06-1300:00:00
SAINT Corporation
www.saintcorporation.com
6

0.972 High

EPSS

Percentile

99.8%

JSON

Added: 06/13/2006
CVE: CVE-2006-2630
BID: 18107
OSVDB: 25846

Background

Various Symantec products include a real-time virus scan service.

Problem

A buffer overflow in the real-time virus scan service allows remote attackers to execute arbitrary commands.

Resolution

Apply patch SYM06-010.

References

<http://www.kb.cert.org/vuls/id/404910&gt;

Limitations

Exploit works on Symantec Client Security 3.0 with **rtvscan.exe** version 10.0.0.359. In order for the exploit to succeed, the Auto-Detect option and the Client Scan Log Forwarding option must be enabled. The Client Scan Log Forwarding option is enabled if the following registry value is 1:

Key: HKEY_LOCAL_MACHINE\Software\Intel\LANDesk\VirusProtect6\CurrentVersion\ForwardScan
Value: NTCommonConfiguration = 1

Platforms

Windows
Windows Server 2003

Related

packetstorm 1
saint 3
checkpoint_advisories 1
cvelist 1
prion 1
cert 1
securityvulns 1
nessus 1
symantec 1
cve 1
packetstorm
packetstorm
Symantec Remote Management Buffer Overflow
2009-11-26 00:00:00
saint
saint
Symantec real-time scan service buffer overflow
2006-06-13 00:00:00
Symantec real-time scan service buffer overflow
2006-06-13 00:00:00
Symantec real-time scan service buffer overflow
2006-06-13 00:00:00
checkpoint_advisories
checkpoint_advisories
Symantec AntiVirus Real Time Virus Scan Service Stack Overflow (CVE-2006-2630)
2009-11-18 00:00:00
cvelist
cvelist
CVE-2006-2630
2006-05-27 21:00:00
prion
prion
Stack overflow
2006-05-27 21:02:00
cert
cert
Symantec products vulnerable to buffer overflow
2006-05-30 00:00:00
securityvulns
securityvulns
[EEYEB-20060524] Symantec Remote Management Stack Buffer Overflow
2006-06-13 00:00:00
nessus
nessus
Symantec AntiVirus Management Interface Remote Overflow (SYM06-010)
2007-01-25 00:00:00
symantec
symantec
Symantec Client Security and Symantec AntiVirus Elevation of Privilege
2006-05-25 08:00:00
cve
cve
CVE-2006-2630
2006-05-27 21:02:00

0.972 High

EPSS

Percentile

99.8%

JSON
Related for SAINT:E67F7FB09A12825A4BD58C46615B3542
packetstorm1saint3checkpoint_advisories1cvelist1prion1cert1securityvulns1nessus1symantec1cve1