|
|
| |
Credit:
The original article can be found at: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-2758
The original article can be found at: http://www.securityfocus.com/bid/15001
|
| |
Vulnerable Systems:
* Symantec AntiVirus Scan Engine for Network Attached Storage 4.3
* Symantec AntiVirus Scan Engine for Netapp NetCache 4.0
* Symantec AntiVirus Scan Engine for Netapp Filer 4.0
* Symantec AntiVirus Scan Engine for Microsoft SharePoint 4.3
* Symantec AntiVirus Scan Engine for Microsoft Portal 4.3
* Symantec AntiVirus Scan Engine for Messaging 4.3
* Symantec AntiVirus Scan Engine for ISA 4.3
* Symantec AntiVirus Scan Engine for ISA 4.0
* Symantec AntiVirus Scan Engine for Clearswift 4.3
* Symantec AntiVirus Scan Engine for Clearswift 4.0
* Symantec AntiVirus Scan Engine for Caching 4.3
* AntiVirus Scan Engine for Bluecoat 4.0
* Symantec AntiVirus Scan Engine 4.3
* Symantec AntiVirus Scan Engine 4.0
A buffer overflow vulnerability exists in the Web-based administrative interface of the Symantec Antivirus Scan Engine. This issue is due to improper bound checking of user-supplied data prior to copying it into an insufficiently sized memory buffer.
This vulnerability allows attackers to execute arbitrary machine code in the context of the affected application. This allows remote attackers to gain privileged remote access to computers running the affected application.
Vendor Status:
Symantec as issued an update for this vulnerablity
Patch Availability:
http://securityresponse.symantec.com/avcenter/security/Content/2005.10.04.html
CVE Information:
CVE-2005-2758
|
|
|
