Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:19158
HistoryFeb 20, 2010 - 12:00 a.m.

Symantec Client Proxy ActiveX控件缓冲区溢出漏洞

2010-02-2000:00:00
Root
www.seebug.org
15

0.656 Medium

EPSS

Percentile

97.6%

JSON

BUGTRAQ ID: 38222
CVE ID: CVE-2010-0108

Symantec Client Security是集成了反病毒和防火墙的个人终端安全产品,Client Proxy是其中的一个组件。

Client Proxy的ActiveX控件实现上存在缓冲溢出漏洞,远程攻击者可能利用此漏洞通过诱使用户访问恶意网页在用户系统上执行任意指令,从而最终控制用户系统。

Symantec Client Security 3.1.x
Symantec Client Security 3.0.x
Symantec AntiVirus 10.2.x
Symantec AntiVirus 10.1.x
Symantec AntiVirus 10.0.x
厂商补丁:

Symantec

目前厂商已经发布了升级补丁以修复这个安全问题,用户可以使用Symantec LiveUpdate进行升级。

http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100217_02

Related

checkpoint_advisories 1
symantec 2
securityvulns 2
cvelist 1
prion 1
cve 1
nessus 1
checkpoint_advisories
checkpoint_advisories
Symantec Products CLIproxy.dll ActiveX Control Buffer Overflow (CVE-2010-0108)
2010-05-11 00:00:00
symantec
symantec
Input validation errors in SYMLTCOM.dll can lead to a buffer overflow.
2010-02-17 08:00:00
Symantec Client Proxy Buffer Overflow in Older Product Versions
2010-02-17 08:00:00
securityvulns
securityvulns
[DSECRG-09-039] Symantec Antivirus 10.0 ActiveX - buffer Overflow.
2010-02-25 00:00:00
Symantec multiple antiviral applications buffer overflow
2010-02-25 00:00:00
cvelist
cvelist
CVE-2010-0108
2010-02-19 17:00:00
prion
prion
Buffer overflow
2010-02-19 17:30:00
cve
cve
CVE-2010-0108
2010-02-19 17:30:00
nessus
nessus
Symantec AntiVirus Multiple Vulnerabilities (SYM10-002 / SYM10-003 / SYM10-004)
2013-09-18 00:00:00

0.656 Medium

EPSS

Percentile

97.6%

JSON
Related for SSV:19158
checkpoint_advisories1symantec2securityvulns2cvelist1prion1cve1nessus1