CVE-2006-3454
First published: Thu Sep 14 2006(Updated: )
Multiple format string vulnerabilities in Symantec AntiVirus Corporate Edition 8.1 up to 10.0, and Client Security 1.x up to 3.0, allow local users to execute arbitrary code via format strings in (1) Tamper Protection and (2) Virus Alert Notification messages.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Symantec Client Security | =3.0 | |
| Symantec Client Security | =1.0.1 | |
| Symantec Norton AntiVirus | =9.0.2 | |
| Symantec Client Security | =2.0.4 | |
| Symantec Norton AntiVirus | =10.0 | |
| Symantec Client Security | =1.1.1 | |
| Symantec Norton AntiVirus | =9.0.1 | |
| Symantec Client Security | =1.1 | |
| Symantec Client Security | =2.0 | |
| Symantec Client Security | =2.0.3 | |
| Symantec Norton AntiVirus | =8.1 | |
| Symantec Norton AntiVirus | =9.0 | |
| Symantec Client Security | =2.0.2 | |
| Symantec Client Security | =2.0.1 | |
| Symantec Client Security | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://securityresponse.symantec.com/avcenter/security/Content/2006.09.13.html
- http://layereddefense.com/SAV13SEPT.html
- http://www.securityfocus.com/bid/19986
- http://secunia.com/advisories/21884
- http://securitytracker.com/id?1016842
- http://www.vupen.com/english/advisories/2006/3599
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28936
- http://www.securityfocus.com/archive/1/446293/100/0/threaded
- http://www.securityfocus.com/archive/1/446041/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/first-publish-date
- agent/softwarecombine
- agent/remedy
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/symantec
- canonical/symantec client security
- version/symantec client security/3.0
- version/symantec client security/1.0.1
- canonical/symantec norton antivirus
- version/symantec norton antivirus/9.0.2
- version/symantec client security/2.0.4
- version/symantec norton antivirus/10.0
- version/symantec client security/1.1.1
- version/symantec norton antivirus/9.0.1
- version/symantec client security/1.1
- version/symantec client security/2.0
- version/symantec client security/2.0.3
- version/symantec norton antivirus/8.1
- version/symantec norton antivirus/9.0
- version/symantec client security/2.0.2
- version/symantec client security/2.0.1
- version/symantec client security/1.0