CVE-2008-0309: Buffer Overflow
First published: Thu Feb 28 2008(Updated: )
Stack-based buffer overflow in Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Symantec Symantec Antivirus Filtering Domino Mpe | <=3.0.12 | |
| Symantec Symantec Mail Security For Microsoft Exchange | <=4.6.5.12 | |
| Symantec Symantec Antivirus Filtering Domino Mpe | <=3.0.12 | |
| Symantec Symantec Antivirus Scan Engine For Ms Isa | <=4.3.16.39 | |
| Symantec Symantec Antivirus Scan Engine Clearswift | <=4.3.16.39 | |
| Symantec Symantec Antivirus Scan Engine | <=4.3.16.39 | |
| Symantec Scan Engine | <=5.1.4.24 | |
| Symantec Symantec Antivirus Scan Engine For Microsoft Sharepoint | <=4.3.16.39 | |
| Symantec Symantec Antivirus Scan Engine Messaging | <=4.3.16.39 | |
| Symantec Symantec Antivirus Scan Engine Caching | <=4.3.16.39 | |
| Symantec Symantec Antivirus Filtering Domino Mpe | <=3.0.12 | |
| Symantec Symantec Mail Security For Microsoft Exchange | <=5.0.4.363 | |
| Symantec Symantec Antivirus Network Attached Storage | <=4.3.16.39 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=667
- http://www.symantec.com/avcenter/security/Content/2008.02.27.html
- http://www.securityfocus.com/bid/27913
- http://secunia.com/advisories/29140
- http://www.securitytracker.com/id?1019503
- http://www.vupen.com/english/advisories/2008/0680
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/symantec
- canonical/symantec symantec antivirus filtering domino mpe
- version/symantec symantec antivirus filtering domino mpe/3.0.12
- canonical/symantec symantec mail security for microsoft exchange
- version/symantec symantec mail security for microsoft exchange/4.6.5.12
- canonical/symantec symantec antivirus scan engine for ms isa
- version/symantec symantec antivirus scan engine for ms isa/4.3.16.39
- canonical/symantec symantec antivirus scan engine clearswift
- version/symantec symantec antivirus scan engine clearswift/4.3.16.39
- canonical/symantec symantec antivirus scan engine
- version/symantec symantec antivirus scan engine/4.3.16.39
- canonical/symantec scan engine
- version/symantec scan engine/5.1.4.24
- canonical/symantec symantec antivirus scan engine for microsoft sharepoint
- version/symantec symantec antivirus scan engine for microsoft sharepoint/4.3.16.39
- canonical/symantec symantec antivirus scan engine messaging
- version/symantec symantec antivirus scan engine messaging/4.3.16.39
- canonical/symantec symantec antivirus scan engine caching
- version/symantec symantec antivirus scan engine caching/4.3.16.39
- version/symantec symantec mail security for microsoft exchange/5.0.4.363
- canonical/symantec symantec antivirus network attached storage
- version/symantec symantec antivirus network attached storage/4.3.16.39