13 matches found
EUVD-2006-0239
Malware in sbrugna...
EUVD-2006-0240
Malware in sbrugna...
Symantec AntiVirus - PowerPoint Misaligned Stream-cache Remote Stack Buffer Overflow (PoC)
Symantec AntiVirus - PowerPoint Misaligned Stream-cache Remote Stack Buffer Overflow PoC Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=823 A PowerPoint PPT file is a complicated OLE compound document comprising of a series of streams. The format is described by Microsoft in...
Symantec AntiVirus - Unpacking RAR Multiple Remote Memory Corruptions
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=810 A major component of the Symantec Antivirus scan engine is the "Decomposer", responsible for unpacking various archive formats such as ZIP, RAR, and so on. The decomposer runs as NT AUTHORITY\SYSTEM on Windows, and root on Linu...
Symantec Legacy Decomposer Code Execution (SYM12-017)
The version of Symantec Endpoint Protection or Symantec Scan Engine installed on the remote Windows host is potentially affected by a code execution vulnerability. The legacy decomposer engine fails to properly handle bounds-checking when parsing files from some versions of CAB archives. C Tenabl...
Symantec Scan Engine Authentication Bypass (CVE-2006-0230)
Symantec Scan Engine provides virus protection services targeted at network traffic as well as data storage devices. It also provides an API in order to enable it to be integrated with third-party software and hardware devices. This product is configurable through a web interface exposed on port...
Code injection
Symantec Scan Engine 5.0.0.24, and possibly other versions before 5.1.0.7, uses the same private DSA key for each installation, which allows remote attackers to conduct man-in-the-middle attacks and decrypt communications...
Improper access control
Symantec Scan Engine 5.0.0.24, and possibly other versions before 5.1.0.7, stores sensitive log and virus definition files under the web root with insufficient access control, which allows remote attackers to obtain the information via direct requests...
Rapid7 Advisory R7-0021: Symantec Scan Engine Authentication Fundamental Design Error
Rapid7, LLC Security Advisory Rapid7 Advisory R7-0021 Symantec Scan Engine Authentication Fundamental Design Error Published: April 21, 2006 Revision: 1.0 http://www.rapid7.com/advisories/R7-0021.html CVE: CVE-2006-0230 1. Affected systems: KNOWN VULNERABLE: o Symantec Scan Engine v5.0.0.24 KNOWN...
Rapid7 Advisory R7-0022: Symantec Scan Engine Known Immutable DSA Private Key
Rapid7, LLC Security Advisory Rapid7 Advisory R7-0022 Symantec Scan Engine Known Immutable DSA Private Key Published: April 21, 2006 Revision: 1.0 http://www.rapid7.com/advisories/R7-0022.html CVE: CVE-2006-0231 1. Affected systems: KNOWN VULNERABLE: o Symantec Scan Engine v5.0.0.24 KNOWN FIXED: ...
[Symantec Security Advisor] Symantec Scan Engine Multiple Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Title: Symantec Scan Engine Multiple Vulnerabilities Threat: Moderate Impact: Unauthorized access Product: Symantec Scan Engine Situation Overview: Three vulnerabilities have been discovered in the Symantec Scan Engine. Symantec Scan Engine is a...
Symantec Scan Engine Multiple Vulnerabilities
SUMMARY Three vulnerabilities have been discovered in the Symantec Scan Engine. Symantec Scan Engine is a TCP/IP server and programming interface that enables third parties to incorporate support for Symantec content scanning technologies into their proprietary applications. This gateway-level...
Symantec Scan Engine 5.0.x.x Change Admin Password Remote Exploit
No description provided by source. !/usr/bin/perl -w Remotely change the administrator password or password hash of Symantec Scan Engine. Author: Marc Bevand of Rapid7 marcbevandatrapid7.com Copyright 2006 Rapid7, LLC. All rights reserved. Redistribution and use in source and binary forms, with o...