4 matches found
Symantec Decomposer Multiple Vulnerabilities (SYM08-006)
The remote Symantec product is affected by multiple issues. By sending a specially crafted RAR file to TCP port 1344, an unauthenticated attacker may be able to cause a denial of service condition or execute arbitrary code, subject to privileges of the user running the application. C Tenable...
CVE-2008-0309
Stack-based buffer overflow in Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a malformed RAR file to...
CVE-2008-0309
CVE-2008-0309 describes a stack-based buffer overflow in Symantec Decomposer used by Symantec Scan Engine and related products. When processing a malformed RAR file sent to ICAP port 1344/tcp, unauthenticated remote attackers could trigger arbitrary code execution or cause a denial of service. Af...
iDefense Security Advisory 02.26.08: Symantec Scan Engine 5.1.2 RAR File Buffer Overflow Vulnerability
iDefense Security Advisory 02.26.08 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 26, 2008 I. BACKGROUND Symantec Scan Engine is a standalone Anti-Virus Engine that exposes a scanning Application Programming Interface API directly to developers who wish to integrate protection into...