Vulnerability Note VU#404910
Symantec products vulnerable to buffer overflow
Symantec products are vulnerable to a stack-based buffer overflow. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code.
Symantec Client Security and Symantec Antivirus Corporate Edition contain a stack-based buffer overflow. For information on specific versions of Symantec Client Security and Symantec Antivirus Corporate Edition that are affected, refer to Symantec Advisory SYM06-010.
Note that the affected products typically run with SYSTEM privileges.
A remote, unauthenticated attacker may be able to execute arbitrary code with SYSTEM privileges.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Symantec, Inc.||Affected||-||30 May 2006|
CVSS Metrics (Learn More)
This vulnerability was reported by eEye Digital Security.
This document was written by Jeff Gennari.
- CVE IDs: CVE-2006-2630
- Date Public: 24 May 2006
- Date First Published: 30 May 2006
- Date Last Updated: 13 Jun 2006
- Severity Metric: 24.30
- Document Revision: 20
If you have feedback, comments, or additional information about this vulnerability, please send us email.