Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs SecuriTeam™ in Your Inbox   E-mail this CVE-2005-0249 to a friend New vulnerability? New tool? Tell us	CVE-2005-0249 Symantec UPX Parsing Engine Remote Heap Overflow Vulnerability     Credit: The original article can be found at: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0249 The original article can be found at: http://www.securityfocus.com/bid/12492 Website Security Scan Code Vulnerability Test Network Assessment Tool Detect hidden vulnerabilities Exhaustive automated testing Real-time, continuous security Get guidance from professionals of internal or 3rd party code. scanning for your entire network    CVE-2005-0249 Details Check for CVE-2005-0249 Vulnerability Assessment and Management. Automated Pen Testing for 50 to 50,000 nodes beyondsecurity.com/vulnerability-scanner Vulnerable Systems:  * Symantec Web Security 3.0  *Symantec Norton SystemWorks 2004  * Symantec Norton System Works for Macintosh 3.0  * Symantec Norton System Works 7.0 for Macintosh  * Symantec Norton System Works 2004 for Macintosh  * Symantec Norton Internet Security for Macintosh 3.0  * Symantec Norton Internet Security for Macintosh 2.0  * Symantec Norton Internet Security 2004 Professional Edition  * Symantec Norton Internet Security 2004 for Macintosh  * Symantec Norton AntiVirus for MS Exchange 2.1  * Symantec Norton AntiVirus for Microsoft Exchange 2.18 build 83  * Symantec Norton Antivirus for Macintosh Corporate Edition 9.0  * Symantec Norton Antivirus 9.0 for Macintosh  * Symantec Norton Antivirus 8.0 for Macintosh  * Symantec Norton Antivirus 2004 for Macintosh  * Symantec Norton AntiVirus 2004  * Symantec Mail Security for SMTP 4.0  * Symantec Mail Security for Microsoft Exchange 4.5 build 719  * Symantec Mail Security for Microsoft Exchange 4.5  * Symantec Mail Security for Microsoft Exchange 4.1 build 459  * Symantec Mail Security for Microsoft Exchange 4.1 build 458  * Symantec Mail Security for Microsoft Exchange 4.1 461  * Symantec Mail Security for Microsoft Exchange 4.0  * Symantec Mail Security for Domino 4.0 build 4.0.1  * Symantec Gateway Security 5400 2.0.1  * Symantec Gateway Security 5400 2.0  * Symantec Gateway Security 5300 1.0  * Symantec Client Security 2.0  * Symantec Client Security 1.1.1 MR5 build 8.1.1.336  * Symantec Client Security 1.1.1 MR4 build 8.1.1.329  * Symantec Client Security 1.1.1 MR3 build 8.1.1.323  * Symantec Client Security 1.1.1 MR2 build 8.1.1.319  * Symantec Client Security 1.1.1 MR1 build 8.1.1.314a  * Symantec Client Security 1.1.1  * Symantec Client Security 1.0.1 MR8 build 8.01.471  * Symantec Client Security 1.0.1 MR7 build 8.01.464  * Symantec Client Security 1.0.1 MR6 build 8.01.460  * Symantec Client Security 1.0.1 MR5 build 8.01.457  * Symantec Client Security 1.0.1 MR4 build 8.01.446  * Symantec Client Security 1.0.1 MR3 build 8.01.434  * Symantec Client Security 1.0.1 build 8.01.437  * Symantec Client Security 1.0.1  * Symantec Client Security 1.0  * Symantec Brightmail Anti-Spam 5.5  * Symantec Brightmail Anti-Spam 4.0  * Symantec AntiVirus/Filtering for Domino Ports 3.0 (OS400) build 3.0.5  * Symantec AntiVirus/Filtering for Domino Ports 3.0 (Linux) build 3.0.5  * Symantec AntiVirus/Filtering for Domino Ports 3.0 (AIX) build 3.0.5  * Symantec AntiVirus/Filtering for Domino Ports 3.0  * Symantec AntiVirus/Filtering for Domino NT 3.1  * Symantec AntiVirus Scan Engine for Netapp NetCache 4.3  * Symantec AntiVirus Scan Engine for Netapp NetCache 4.0  * Symantec AntiVirus Scan Engine for Netapp Filer 4.3  * Symantec AntiVirus Scan Engine for Netapp Filer 4.0  * Symantec AntiVirus Scan Engine for ISA 4.3  * Symantec AntiVirus Scan Engine for ISA 4.0  * Symantec AntiVirus Scan Engine for Filers 4.3  * Symantec AntiVirus Scan Engine for Caching 4.3  * Symantec AntiVirus Scan Engine for Bluecoat 4.3  * Symantec AntiVirus Scan Engine for Bluecoat 4.0  * Symantec AntiVirus Scan Engine 4.3  * Symantec AntiVirus Scan Engine 4.0  * Symantec AntiVirus for SMTP 3.1 build 3.1.6  * Symantec AntiVirus for SMTP 3.1 build 3.1.5  * Symantec AntiVirus for SMTP 3.1 build 3.1.4  * Symantec AntiVirus for SMTP 3.1 build 3.1.3  * Symantec AntiVirus for SMTP 3.1 build 3.1.2  * Symantec AntiVirus for SMTP 3.1 build 3.1.1  * Symantec AntiVirus for SMTP 3.1  * Symantec AntiVirus for Network Attached Storage  * Symantec AntiVirus for Caching  * Symantec AntiVirus Corporate Edition 9.0  * Symantec AntiVirus Corporate Edition 8.1.1 build 8.1.1.329  * Symantec AntiVirus Corporate Edition 8.1.1 build 8.1.1.323  * Symantec AntiVirus Corporate Edition 8.1.1 build 8.1.1.319  * Symantec AntiVirus Corporate Edition 8.1.1 build 8.1.1.314a  * Symantec AntiVirus Corporate Edition 8.1.1  * Symantec AntiVirus Corporate Edition 8.1 build 8.01.471  * Symantec AntiVirus Corporate Edition 8.1 build 8.01.464  * Symantec AntiVirus Corporate Edition 8.1 build 8.01.460  * Symantec AntiVirus Corporate Edition 8.1 build 8.01.457  * Symantec AntiVirus Corporate Edition 8.1 build 8.01.446  * Symantec AntiVirus Corporate Edition 8.1 build 8.01.437  * Symantec AntiVirus Corporate Edition 8.1 build 8.01.434  * Symantec AntiVirus Corporate Edition 8.0 1 Various Symantec products are reported prone to a remote heap overflow vulnerability. This issue affects the UPX Parsing Engine shipped with the products. A successful attack may allow a remote attacker to execute arbitrary code on a vulnerable computer leading to a complete compromise. Vendor Status: Symantec as issued an update for this vulnerablity Patch Availability: http://securityresponse.symantec.com/avcenter/security/Content/2005.02.08.html CVE Information: CVE-2005-0249  Comments on CVE-2005-0249:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

Copyright © 1998-2010 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®