58 matches found
EUVD-2002-1675
Malware in sbrugna...
EUVD-2004-0364
Malware in sbrugna...
EUVD-2003-0984
Malware in sbrugna...
EUVD-2003-1139
Malware in sbrugna...
EUVD-2007-5028
Malware in sbrugna...
CVE-2010-5168
Race condition in Symantec Norton Internet Security 2010 17.5.0.127 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory...
Symantec Norton Internet Security Decomposer Engine Multiple Parsing Vulnerabilities
Symantec Norton Internet Security is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Memory corruption
The AntiVirus Decomposer engine in Symantec Advanced Threat Protection ATP; Symantec Data Center Security:Server SDCS:S 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection SEP before 12.1 RU6 MP5; Symantec Endpoint Protection SEP for Mac; Symantec Endpoint Protection SEP for...
Buffer overflow
Buffer overflow in Dec2SS.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection ATP; Symantec Data Center Security:Server SDCS:S 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection SEP before 12.1 RU6 MP5; Symantec Endpoint Protection SEP for Mac;...
CVE-2016-2211
MODE C: The connected Nessus/OpenVAS entries describe CVE-2016-2211 as part of a set of vulnerabilities in Symantec products (notably the Decomposer/UNPACK engine and related parsers) affecting multiple versions of Symantec Protection for SharePoint Servers, Protection Engine, Web Gateway, and re...
Symantec Norton Internet Security 2004 ActiveX Control Buffer Overflow
No description provided by source. $Id: nis2004get.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Symantec AntiVirus IOCTL Kernel Privilege Escalation Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/20360/info Symantec AntiVirus is prone to a privilege-escalation vulnerability. Local attackers can exploit this issue to corrupt memory and execute arbitrary code with kernel-level privileges. Successful exploits may...
CVE-2010-5168
Race condition in Symantec Norton Internet Security 2010 17.5.0.127 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory...
CVE-2010-5168
CVE-2010-5168 describes a race condition in Symantec Norton Internet Security 2010 (version 17.5.0.127) on Windows XP that allows local users to bypass kernel-mode hook handlers and run code that would normally be blocked by a hook, via certain user-space memory changes during hook-handler execut...
PT-2012-1380 · Symantec · Symantec Norton Internet Security
Name of the Vulnerable Software and Affected Versions: Symantec Norton Internet Security 2010 version 17.5.0.127 Description: A race condition issue allows local users to bypass kernel-mode hook handlers and execute dangerous code that would otherwise be blocked by a handler but not blocked by...
Symantec Norton Internet Security 2004 ActiveX Control Buffer Overflow (CVE-2007-1689)
A remote code execution vulnerability has been reported in Symantec Norton Internet Security 2004. The vulnerability is due to data validation failure by the ISAlertDataCOM ActiveX control. A remote attacker may exploit this vulnerability by enticing an affected user to open a specially crafted...
CVE-2010-0107
Buffer overflow in an ActiveX control SYMLTCOM.dll in Symantec N360 1.0 and 2.0; Norton Internet Security, AntiVirus, SystemWorks, and Confidential 2006 through 2008; and Symantec Client Security 3.0.x before 3.1 MR9, and 3.1.x before MR9; allows remote attackers to cause a denial of service cras...
Norton Internet Security 2004 symspam.dll Buffer Overflow (CVE-2004-0363)
Norton Internet Security 2004 is an all-in-one security solution for the desktop. One of the main features of Norton Internet Security 2004 is the ability to integrate with a users mail client and install spam filters on incoming mail. This feature of Norton Internet Security 2004 is called...
多个Symantec产品RAR/TAR/ZIP文件扫描绕过漏洞
Bugraq ID: 35354 多个Symantec产品对畸形或特殊格式的压缩档文件如tar/zip/rar/缺少真确处理,可导致绕过扫描产品的检测。 攻击者构建恶意的文件,发送给目标用户,可绕过检测使应用程序展开并执行。 目前没有详细漏洞细节提供。 Symantec Symantec AntiVirus Scan Engine for Microsoft ISA 4.3.12 Symantec Symantec AntiVirus Corporate Edition 10.2 MR2 Symantec Scan Engine 5.1.6.31 Symantec Scan Engine...
CVE-2009-1428
Multiple cross-site scripting XSS vulnerabilities in ccLgView.exe in the Symantec Log Viewer, as used in Symantec AntiVirus SAV before 10.1 MR8, Symantec Endpoint Protection SEP 11.0 before 11.0 MR1, Norton 360 1.0, and Norton Internet Security 2005 through 2008, allow remote attackers to inject...