Vulnerability Note VU#404910

Symantec products vulnerable to buffer overflow

Overview

Symantec products are vulnerable to a stack-based buffer overflow. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code.

I. Description

Symantec Client Security and Symantec Antivirus Corporate Edition contain a stack-based buffer overflow. For information on specific versions of Symantec Client Security and Symantec Antivirus Corporate Edition that are affected, refer to Symantec Advisory SYM06-010.

Note that the affected products typically run with SYSTEM privileges.

II. Impact

A remote, unauthenticated attacker may be able to execute arbitrary code with SYSTEM privileges.

III. Solution

Apply updates

Symantec has released updates to correct this vulnerability. Refer to Symantec Advisory SYM06-010 for more information.

Systems Affected

Vendor	Status	Date Notified	Date Updated
Symantec, Inc.	Vulnerable	30-May-2006

References

http://www.eeye.com/html/research/advisories/AD20060612.html
http://www.symantec.com/avcenter/security/Content/2006.05.25.html
http://www.eeye.com/html/research/upcoming/20060524.html
http://www.securityfocus.com/bid/18107/
http://securitytracker.com/alerts/2006/May/1016162.html

Credit

This vulnerability was reported by eEye Digital Security.

This document was written by Jeff Gennari.

Other Information

Date Public:	2006-05-24
Date First Published:	2006-05-30
Date Last Updated:	2006-06-13
CERT Advisory:
CVE-ID(s):	CVE-2006-2630
NVD-ID(s):	CVE-2006-2630
US-CERT Technical Alerts:
Metric:	24.30
Document Revision:	20

If you have feedback, comments, or additional information about this vulnerability, please send us email.

Produced 2006 by US-CERT, a government organization
Disclaimers and copyright information

Get Adobe Reader