CVE-2007-3771: Buffer Overflow
First published: Sun Jul 15 2007(Updated: )
Stack-based buffer overflow in the Internet E-mail Auto-Protect feature in Symantec AntiVirus Corporate Edition before 10.1, and Client Security before 3.1, allows local users to cause a denial of service (service crash) via a long (1) To, (2) From, or (3) Subject header in an outbound SMTP e-mail message. NOTE: the original vendor advisory referenced CVE-2006-3456, but this was an error.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Symantec Client Security | =3.0 | |
| Symantec Client Security | =3.0.1.1009 | |
| Symantec Norton AntiVirus | =9.0.2.1000 | |
| Symantec Norton AntiVirus | =9.0.3.1000 | |
| Symantec Client Security | =3.0.2.2021 | |
| Symantec Norton AntiVirus | =9.0.2 | |
| Symantec Norton AntiVirus | =10.0.2.2011 | |
| Symantec Norton AntiVirus | =10.0.2.2010 | |
| Symantec Client Security | =3.0.1.1000 | |
| Symantec Norton AntiVirus | =10.0 | |
| Symantec Norton AntiVirus | =10.0.1.1000 | |
| Symantec Client Security | =3.0.2.2002 | |
| Symantec Norton AntiVirus | =9.0.1.1.1000 | |
| Symantec Client Security | =3.0.2.2011 | |
| Symantec Norton AntiVirus | =9.0.5.1100 | |
| Symantec Client Security | =3.0.2 | |
| Symantec Norton AntiVirus | =10.0.2.2001 | |
| Symantec Norton AntiVirus | =9.0.1 | |
| Symantec Norton AntiVirus | =9.0.1.1000 | |
| Symantec Norton AntiVirus | =10.0.1.1007 | |
| Symantec Norton AntiVirus | =10.0.2.2020 | |
| Symantec Client Security | =3.0.2.2001 | |
| Symantec Norton AntiVirus | =9.0.4 | |
| Symantec Norton AntiVirus | =9.0.0.338 | |
| Symantec Client Security | =2.0 | |
| Symantec Norton AntiVirus | =10.0.2.2000 | |
| Symantec Client Security | =3.0.2.2000 | |
| Symantec Norton AntiVirus | =10.0.2.2021 | |
| Symantec Norton AntiVirus | =9.0 | |
| Symantec Client Security | =3.0.1.1007 | |
| Symantec Norton AntiVirus | =9.0.5 | |
| Symantec Norton AntiVirus | =10.0.2.2002 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/24802
- http://securitytracker.com/id?1018367
- http://securitytracker.com/id?1018371
- http://secunia.com/advisories/26036
- http://osvdb.org/36115
- http://www.vupen.com/english/advisories/2007/2506
- http://securityresponse.symantec.com/avcenter/security/Content/2007.07.11b.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35354
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-historical
- collector/nvd-index
- vendor/symantec
- canonical/symantec client security
- version/symantec client security/3.0
- version/symantec client security/3.0.1.1009
- canonical/symantec norton antivirus
- version/symantec norton antivirus/9.0.2.1000
- version/symantec norton antivirus/9.0.3.1000
- version/symantec client security/3.0.2.2021
- version/symantec norton antivirus/9.0.2
- version/symantec norton antivirus/10.0.2.2011
- version/symantec norton antivirus/10.0.2.2010
- version/symantec client security/3.0.1.1000
- version/symantec norton antivirus/10.0
- version/symantec norton antivirus/10.0.1.1000
- version/symantec client security/3.0.2.2002
- version/symantec norton antivirus/9.0.1.1.1000
- version/symantec client security/3.0.2.2011
- version/symantec norton antivirus/9.0.5.1100
- version/symantec client security/3.0.2
- version/symantec norton antivirus/10.0.2.2001
- version/symantec norton antivirus/9.0.1
- version/symantec norton antivirus/9.0.1.1000
- version/symantec norton antivirus/10.0.1.1007
- version/symantec norton antivirus/10.0.2.2020
- version/symantec client security/3.0.2.2001
- version/symantec norton antivirus/9.0.4
- version/symantec norton antivirus/9.0.0.338
- version/symantec client security/2.0
- version/symantec norton antivirus/10.0.2.2000
- version/symantec client security/3.0.2.2000
- version/symantec norton antivirus/10.0.2.2021
- version/symantec norton antivirus/9.0
- version/symantec client security/3.0.1.1007
- version/symantec norton antivirus/9.0.5
- version/symantec norton antivirus/10.0.2.2002