6 matches found
CVE-2009-1429
CVE-2009-1429 affects the Intel LANDesk Common Base Agent (CBA) used by Symantec products in the AMS2/Symantec System Center stack. A crafted packet could be interpreted as a command to be launched in a new process via CreateProcessA, enabling remote execution of arbitrary commands with SYSTEM pr...
CVE-2010-0110
CVE-2010-0110 - Symantec Alert Management System (AMS2) involves a stack buffer overflow in AMSLIB.dll (Intel Alert Handler) and related modules (pagehndl.dll in the Alert Handler, and the Intel Alert Originator Manager). The vulnerability is triggered by long, specially crafted data sent to msgs...
CVE-2009-1431
Symantec Alert Management System (AMS2) Intel File Transfer service (XFR.EXE) is affected. A design flaw allows remote code execution by an unauthenticated attacker who places code on a share or WebDAV server and then sends the UNC path to the XFR.EXE service. Impact can affect Symantec System Ce...
CVE-2010-0111
CVE-2010-0111 affects Intel Alert Management System (AMS/AMS2) as used in Symantec AntiVirus Corporate Edition prior to 10.1 MR10, Symantec System Center 10.x, and Symantec Quarantine Server 3.5/3.6. The HDNLRSVC.EXE Intel Alert Handler service can be influenced via a UNC share pathname supplied ...
CVE-2009-1430
CVE-2009-1430 describes multiple stack-based buffer overflows in the IAO.EXE component of the Intel Alert Originator Service used by Symantec Alert Management System 2 (AMS2). The underlying fault is a boundary/stack overflow in the MsgSys.exe path that can be triggered by either a crafted networ...
CVE-2011-0688
CVE-2011-0688 affects Intel Alert Management System (AMS/AMS2) as used in Symantec Antivirus Corporate Edition (SAVCE) 10.x (before 10.1 MR10), Symantec System Center (SSC) 10.x, and Symantec Quarantine Server 3.5/3.6. It allows remote attackers to execute arbitrary commands via crafted TCP messa...