Brightmail Antispam@5.5 Security Vulnerabilities and Issues — Brightmail Antispam@5.5 CVE List

Lucene search

SymantecBrightmail Antispam5.5

6 matches found

CVE•added 2007/10/05 9:17 p.m.•58 views

CVE-2007-3699

The Decomposer component in multiple Symantec products allows remote attackers to cause a denial of service (infinite loop) via a certain value in the PACK_SIZE field of a RAR archive file header.

9.3CVSS6.2AI score0.02382EPSS

CVE•added 2005/02/08 5:0 a.m.•50 views

CVE-2005-0249

Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote attackers to execute arbitrary code via a UPX compressed file containing a negative virtual offset to a crafted PE header.

7.5CVSS8AI score0.10603EPSS

CVE•added 2007/10/05 9:17 p.m.•50 views

CVE-2007-0447

Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote attackers to execute arbitrary code via multiple crafted CAB archives.

9.3CVSS7.7AI score0.10844EPSS

CVE•added 2006/08/07 7:4 p.m.•42 views

CVE-2006-4013

Multiple directory traversal vulnerabilities in Symantec Brightmail AntiSpam (SBAS) before 6.0.4, when the Control Center is allowed to connect from any computer, allow remote attackers to read and overwrite certain files via directory traversal sequences in (1) DATABLOB-GET and (2) DATABLOB-SAVE r...

7.6CVSS6.8AI score0.01435EPSS

CVE•added 2005/06/09 4:0 a.m.•41 views

CVE-2005-1867

Symantec Brightmail AntiSpam before 6.0.2 has a hard-coded database administrator password, which allows remote attackers to gain privileges.

7.5CVSS7.3AI score0.01133EPSS

CVE•added 2006/08/07 7:4 p.m.•39 views

CVE-2006-4014

Symantec Brightmail AntiSpam (SBAS) before 6.0.4, when the Control Center is allowed to connect from any computer, allows remote attackers to cause a denial of service (application freeze) "by sending invalid posts".

5CVSS6.6AI score0.01091EPSS