Details of VAR-200502-0085

ID

VAR-200502-0085

CVE

CVE-2005-0249

TITLE

Symantec products vulnerable to buffer overflow via a specially crafted UPX file

Trust: 0.8

sources: CERT/CC: VU#107822

DESCRIPTION

Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote attackers to execute arbitrary code via a UPX compressed file containing a negative virtual offset to a crafted PE header. The Symantec AntiVirus Library DEC2EXE component is vulnerable to remote arbitrary code execution. Various Symantec products are reported prone to a remote heap overflow vulnerability. This issue affects the UPX Parsing Engine shipped with the products. The Symantec Antivirus library is used to parse different file formats to detect malicious programs, and one of the modules, DEC2EXE, is used to detect UPX file formats. The module of the Symantec Antivirus library used to detect UPX files lacks correct handling of virtual file offsets. Remote attackers can exploit this vulnerability to construct malicious UPX files, trick users into processing them, and possibly execute arbitrary commands on the system with user process privileges. TITLE: Symantec Multiple Products UPX Parsing Engine Buffer Overflow SECUNIA ADVISORY ID: SA14179 VERIFY ADVISORY: http://secunia.com/advisories/14179/ CRITICAL: Highly critical IMPACT: System access WHERE: >From remote OPERATING SYSTEM: Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ SOFTWARE: Norton Internet Security 2004 http://secunia.com/product/2441/ Norton Internet Security 2004 Professional http://secunia.com/product/2442/ Norton SystemWorks 2004 http://secunia.com/product/2796/ Symantec AntiVirus Corporate Edition 8.x http://secunia.com/product/659/ Symantec AntiVirus Corporate Edition 9.x http://secunia.com/product/3549/ Symantec AntiVirus for Caching 4.x http://secunia.com/product/4626/ Symantec AntiVirus for Network Attached Storage 4.x http://secunia.com/product/4625/ Symantec AntiVirus for SMTP Gateways 3.x http://secunia.com/product/2231/ Symantec AntiVirus Scan Engine 4.x http://secunia.com/product/3040/ Symantec AntiVirus/Filtering for Domino http://secunia.com/product/2029/ Symantec Brightmail AntiSpam 4.x http://secunia.com/product/4627/ Symantec Brightmail AntiSpam 5.x http://secunia.com/product/4628/ Symantec Client Security 1.x http://secunia.com/product/2344/ Symantec Client Security 2.x http://secunia.com/product/3478/ Symantec Mail Security for Exchange 4.x http://secunia.com/product/2820/ Symantec Mail Security for SMTP 4.x http://secunia.com/product/3558/ Symantec Norton AntiVirus 2004 http://secunia.com/product/2800/ Symantec Norton AntiVirus for Microsoft Exchange 2.x http://secunia.com/product/1017/ Symantec Web Security 3.x http://secunia.com/product/2813/ DESCRIPTION: ISS X-Force has reported a vulnerability in multiple Symantec products, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error in the DEC2EXE parsing engine used by the antivirus scanning functionality when processing UPX compressed files. This can be exploited to cause a heap-based buffer overflow via a specially crafted UPX file. The vulnerability affects the following products: * Norton AntiVirus for Microsoft Exchange 2.1 (prior to build 2.18.85) * Symantec Mail Security for Microsoft Exchange 4.0 (prior to build 4.0.10.465) * Symantec Mail Security for Microsoft Exchange 4.5 (prior to build 4.5.3) * Symantec AntiVirus/Filtering for Domino NT 3.1 (prior to build 3.1.1) * Symantec Mail Security for Domino 4.0 (prior to build 4.0.1) * Symantec AntiVirus/Filtering for Domino Ports 3.0 for AIX (prior to build 3.0.6) * Symantec AntiVirus/Filtering for Domino Ports 3.0 for OS400, Linux, Solaris (prior to build 3.0.7) * Symantec AntiVirus Scan Engine 4.3 (prior to build 4.3.3) * Symantec AntiVirus for Network Attached Storage (prior to build 4.3.3) * Symantec AntiVirus for Caching (prior to build 4.3.3) * Symantec AntiVirus for SMTP 3.1 (prior to build 3.1.7) * Symantec Mail Security for SMTP 4.0 (prior to build 4.0.2) * Symantec Web Security 3.0 (prior to build 3.0.1.70) * Symantec BrightMail AntiSpam 4.0 * Symantec BrightMail AntiSpam 5.5 * Symantec AntiVirus Corporate Edition 9.0 (prior to build 9.01.1000) * Symantec AntiVirus Corporate Edition 8.01, 8.1.1 * Symantec Client Security 2.0 (prior to build 9.01.1000) * Symantec Client Security 1.0 * Symantec Gateway Security 2.0, 2.0.1 - 5400 Series * Symantec Gateway Security 1.0 - 5300 Series * Symantec Norton Antivirus 2004 for Windows * Symantec Norton Internet Security 2004 (pro) for Windows * Symantec Norton System Works 2004 for Windows * Symantec Norton Antivirus 2004 for Macintosh * Symantec Norton Internet Security 2004 for Macintosh * Symantec Norton System Works 2004 for Macintosh * Symantec Norton Antivirus 9.0 for Macintosh * Symantec Norton Internet Security for Macintosh 3.0 * Symantec Norton System Works for Macintosh 3.0 SOLUTION: Updates are available (see the vendor advisory for details). PROVIDED AND/OR DISCOVERED BY: Alex Wheeler, ISS X-Force. ORIGINAL ADVISORY: Symantec: http://www.sarc.com/avcenter/security/Content/2005.02.08.html ISS X-Force: http://xforce.iss.net/xforce/alerts/id/187 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.07

sources: NVD: CVE-2005-0249 // CERT/CC: VU#107822 // BID: 12492 // VULHUB: VHN-11458 // PACKETSTORM: 36129

AFFECTED PRODUCTS

vendor:	symantec	model:	client security	scope:	eq	version:	1.0.1_build_8.01.460	Trust: 1.6
vendor:	symantec	model:	client security	scope:	eq	version:	1.0.1_build_8.01.437	Trust: 1.6
vendor:	symantec	model:	client security	scope:	eq	version:	1.0.1_build_8.01.434	Trust: 1.6
vendor:	symantec	model:	client security	scope:	eq	version:	1.0.1_build_8.01.464	Trust: 1.6
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	2004	Trust: 1.3
vendor:	symantec	model:	web security	scope:	eq	version:	3.01.68	Trust: 1.0
vendor:	symantec	model:	client security	scope:	eq	version:	1.0.1_build_8.01.457	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	8.1.1.323	Trust: 1.0
vendor:	symantec	model:	sav filter domino nt ports	scope:	eq	version:	build3.0.5	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	8.1.1.319	Trust: 1.0
vendor:	symantec	model:	norton internet security	scope:	eq	version:	2004	Trust: 1.0
vendor:	symantec	model:	web security	scope:	eq	version:	3.01.61	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	8.01.464	Trust: 1.0
vendor:	symantec	model:	mail security	scope:	eq	version:	4.1	Trust: 1.0
vendor:	symantec	model:	gateway security	scope:	eq	version:	2.0.1	Trust: 1.0
vendor:	symantec	model:	web security	scope:	eq	version:	3.01.60	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	8.01.471	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	9.0	Trust: 1.0
vendor:	symantec	model:	sav filter for domino nt	scope:	eq	version:	3.1.1	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	8.01.437	Trust: 1.0
vendor:	symantec	model:	client security	scope:	eq	version:	1.1.1_mr2_build_8.1.1.319	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	8.01.434	Trust: 1.0
vendor:	symantec	model:	client security	scope:	eq	version:	1.1.1_mr5_build_8.1.1.336	Trust: 1.0
vendor:	symantec	model:	mail security	scope:	eq	version:	4.5_build_719	Trust: 1.0
vendor:	symantec	model:	web security	scope:	eq	version:	3.01.63	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	8.01.460	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	8.01.446	Trust: 1.0
vendor:	symantec	model:	web security	scope:	eq	version:	3.01.62	Trust: 1.0
vendor:	symantec	model:	gateway security	scope:	eq	version:	1.0	Trust: 1.0
vendor:	symantec	model:	client security	scope:	eq	version:	1.0.1_build_8.01.471	Trust: 1.0
vendor:	symantec	model:	client security	scope:	eq	version:	1.1.1_mr3_build_8.1.1.323	Trust: 1.0
vendor:	symantec	model:	brightmail antispam	scope:	eq	version:	5.5	Trust: 1.0
vendor:	symantec	model:	client security	scope:	eq	version:	1.1.1_mr4_build_8.1.1.329	Trust: 1.0
vendor:	symantec	model:	web security	scope:	eq	version:	3.01.59	Trust: 1.0
vendor:	symantec	model:	mail security	scope:	eq	version:	4.0	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	8.1.1_build8.1.1.314a	Trust: 1.0
vendor:	symantec	model:	antivirus scan engine	scope:	lt	version:	4.3.3	Trust: 1.0
vendor:	symantec	model:	gateway security	scope:	eq	version:	2.0	Trust: 1.0
vendor:	symantec	model:	norton system works	scope:	eq	version:	2004	Trust: 1.0
vendor:	symantec	model:	client security	scope:	eq	version:	1.1.1_mr1_build_8.1.1.314a	Trust: 1.0
vendor:	symantec	model:	web security	scope:	eq	version:	3.01.67	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	8.01.457	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	8.1.1.329	Trust: 1.0
vendor:	symantec	model:	norton antivirus	scope:	eq	version:	2.18_build_83	Trust: 1.0
vendor:	symantec	model:	client security	scope:	eq	version:	1.0.1_build_8.01.446	Trust: 1.0
vendor:	symantec	model:	brightmail antispam	scope:	eq	version:	4.0	Trust: 1.0
vendor:	symantec	model:	antivirus/filtering for domino ports build	scope:	eq	version:	3.03.0.5	Trust: 0.9
vendor:	symantec	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	symantec	model:	antivirus scan engine	scope:	eq	version:	3.1.5	Trust: 0.6
vendor:	symantec	model:	antivirus scan engine	scope:	eq	version:	3.1.4	Trust: 0.6
vendor:	symantec	model:	antivirus scan engine	scope:	eq	version:	3.1.3	Trust: 0.6
vendor:	symantec	model:	antivirus scan engine	scope:	eq	version:	3.1.2	Trust: 0.6
vendor:	symantec	model:	antivirus scan engine	scope:	eq	version:	3.1.6	Trust: 0.6
vendor:	symantec	model:	antivirus scan engine	scope:	eq	version:	3.1.1	Trust: 0.6
vendor:	symantec	model:	web security	scope:	eq	version:	3.0	Trust: 0.3
vendor:	symantec	model:	norton systemworks	scope:	eq	version:	2004	Trust: 0.3
vendor:	symantec	model:	norton system works for macintosh	scope:	eq	version:	3.0	Trust: 0.3
vendor:	symantec	model:	norton system works for macintosh	scope:	eq	version:	7.0	Trust: 0.3
vendor:	symantec	model:	norton system works for macintosh	scope:	eq	version:	2004	Trust: 0.3
vendor:	symantec	model:	norton internet security for macintosh	scope:	eq	version:	3.0	Trust: 0.3
vendor:	symantec	model:	norton internet security for macintosh	scope:	eq	version:	2.0	Trust: 0.3
vendor:	symantec	model:	norton internet security professional edition	scope:	eq	version:	2004	Trust: 0.3
vendor:	symantec	model:	norton internet security for macintosh	scope:	eq	version:	2004	Trust: 0.3
vendor:	symantec	model:	norton antivirus for ms exchange	scope:	eq	version:	2.1	Trust: 0.3
vendor:	symantec	model:	norton antivirus for microsoft exchange build	scope:	eq	version:	2.1883	Trust: 0.3
vendor:	symantec	model:	norton antivirus for macintosh corporate edition	scope:	eq	version:	9.0	Trust: 0.3
vendor:	symantec	model:	norton antivirus for macintosh	scope:	eq	version:	9.0	Trust: 0.3
vendor:	symantec	model:	norton antivirus for macintosh	scope:	eq	version:	8.0	Trust: 0.3
vendor:	symantec	model:	norton antivirus for macintosh	scope:	eq	version:	2004	Trust: 0.3
vendor:	symantec	model:	mail security for smtp	scope:	eq	version:	4.0	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange build	scope:	eq	version:	4.5719	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange	scope:	eq	version:	4.5	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange build	scope:	eq	version:	4.1459	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange build	scope:	eq	version:	4.1458	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange	scope:	eq	version:	4.1461	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange	scope:	eq	version:	4.0	Trust: 0.3
vendor:	symantec	model:	mail security for domino build	scope:	eq	version:	4.04.0.1	Trust: 0.3
vendor:	symantec	model:	gateway security	scope:	eq	version:	54002.0.1	Trust: 0.3
vendor:	symantec	model:	gateway security	scope:	eq	version:	54002.0	Trust: 0.3
vendor:	symantec	model:	gateway security	scope:	eq	version:	53001.0	Trust: 0.3
vendor:	symantec	model:	client security	scope:	eq	version:	2.0	Trust: 0.3
vendor:	symantec	model:	client security mr5 build	scope:	eq	version:	1.1.18.1.1.336	Trust: 0.3
vendor:	symantec	model:	client security mr4 build	scope:	eq	version:	1.1.18.1.1.329	Trust: 0.3
vendor:	symantec	model:	client security mr3 build	scope:	eq	version:	1.1.18.1.1.323	Trust: 0.3
vendor:	symantec	model:	client security mr2 build	scope:	eq	version:	1.1.18.1.1.319	Trust: 0.3
vendor:	symantec	model:	client security mr1 build 8.1.1.314a	scope:	eq	version:	1.1.1	Trust: 0.3
vendor:	symantec	model:	client security	scope:	eq	version:	1.1.1	Trust: 0.3
vendor:	symantec	model:	client security mr8 build	scope:	eq	version:	1.0.18.01.471	Trust: 0.3
vendor:	symantec	model:	client security mr7 build	scope:	eq	version:	1.0.18.01.464	Trust: 0.3
vendor:	symantec	model:	client security mr6 build	scope:	eq	version:	1.0.18.01.460	Trust: 0.3
vendor:	symantec	model:	client security mr5 build	scope:	eq	version:	1.0.18.01.457	Trust: 0.3
vendor:	symantec	model:	client security mr4 build	scope:	eq	version:	1.0.18.01.446	Trust: 0.3
vendor:	symantec	model:	client security mr3 build	scope:	eq	version:	1.0.18.01.434	Trust: 0.3
vendor:	symantec	model:	client security build	scope:	eq	version:	1.0.18.01.437	Trust: 0.3
vendor:	symantec	model:	client security	scope:	eq	version:	1.0.1	Trust: 0.3
vendor:	symantec	model:	client security	scope:	eq	version:	1.0	Trust: 0.3
vendor:	symantec	model:	brightmail anti-spam	scope:	eq	version:	5.5	Trust: 0.3
vendor:	symantec	model:	brightmail anti-spam	scope:	eq	version:	4.0	Trust: 0.3
vendor:	symantec	model:	antivirus/filtering for domino ports	scope:	eq	version:	3.0	Trust: 0.3
vendor:	symantec	model:	antivirus/filtering for domino nt	scope:	eq	version:	3.1	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for netapp netcache	scope:	eq	version:	4.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for netapp netcache	scope:	eq	version:	4.0	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for netapp filer	scope:	eq	version:	4.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for netapp filer	scope:	eq	version:	4.0	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for isa	scope:	eq	version:	4.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for isa	scope:	eq	version:	4.0	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for filers	scope:	eq	version:	4.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for caching	scope:	eq	version:	4.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for bluecoat	scope:	eq	version:	4.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for bluecoat	scope:	eq	version:	4.0	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine	scope:	eq	version:	4.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine	scope:	eq	version:	4.0	Trust: 0.3
vendor:	symantec	model:	antivirus for smtp build	scope:	eq	version:	3.13.1.6	Trust: 0.3
vendor:	symantec	model:	antivirus for smtp build	scope:	eq	version:	3.13.1.5	Trust: 0.3
vendor:	symantec	model:	antivirus for smtp build	scope:	eq	version:	3.13.1.4	Trust: 0.3
vendor:	symantec	model:	antivirus for smtp build	scope:	eq	version:	3.13.1.3	Trust: 0.3
vendor:	symantec	model:	antivirus for smtp build	scope:	eq	version:	3.13.1.2	Trust: 0.3
vendor:	symantec	model:	antivirus for smtp build	scope:	eq	version:	3.13.1.1	Trust: 0.3
vendor:	symantec	model:	antivirus for smtp	scope:	eq	version:	3.1	Trust: 0.3
vendor:	symantec	model:	antivirus for network attached storage	scope:	-	version:	-	Trust: 0.3
vendor:	symantec	model:	antivirus for caching	scope:	-	version:	-	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition	scope:	eq	version:	9.0	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition build	scope:	eq	version:	8.1.18.1.1.329	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition build	scope:	eq	version:	8.1.18.1.1.323	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition build	scope:	eq	version:	8.1.18.1.1.319	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition build 8.1.1.314a	scope:	eq	version:	8.1.1	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition	scope:	eq	version:	8.1.1	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition build	scope:	eq	version:	8.18.01.471	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition build	scope:	eq	version:	8.18.01.464	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition build	scope:	eq	version:	8.18.01.460	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition build	scope:	eq	version:	8.18.01.457	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition build	scope:	eq	version:	8.18.01.446	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition build	scope:	eq	version:	8.18.01.437	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition build	scope:	eq	version:	8.18.01.434	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition	scope:	eq	version:	8.01	Trust: 0.3
vendor:	symantec	model:	web security build	scope:	ne	version:	3.0.13.01.59	Trust: 0.3
vendor:	symantec	model:	web security build	scope:	ne	version:	3.0.13.0.1.72	Trust: 0.3
vendor:	symantec	model:	web security	scope:	ne	version:	3.0.1.70	Trust: 0.3
vendor:	symantec	model:	norton systemworks	scope:	ne	version:	2003	Trust: 0.3
vendor:	symantec	model:	norton system works for macintosh	scope:	ne	version:	3.0	Trust: 0.3
vendor:	symantec	model:	norton system works for macintosh	scope:	ne	version:	7.0	Trust: 0.3
vendor:	symantec	model:	norton system works premier	scope:	ne	version:	2005	Trust: 0.3
vendor:	symantec	model:	norton internet security for macintosh	scope:	ne	version:	3.0	Trust: 0.3
vendor:	symantec	model:	norton internet security for macintosh	scope:	ne	version:	2.0	Trust: 0.3
vendor:	symantec	model:	norton internet security	scope:	ne	version:	2005	Trust: 0.3
vendor:	symantec	model:	norton internet security professional edition	scope:	ne	version:	2003	Trust: 0.3
vendor:	symantec	model:	norton antivirus for ms exchange	scope:	ne	version:	2.18.88	Trust: 0.3
vendor:	symantec	model:	norton antivirus for ms exchange	scope:	ne	version:	2.18.85	Trust: 0.3
vendor:	symantec	model:	norton antivirus for ms exchange	scope:	ne	version:	2.18.82	Trust: 0.3
vendor:	symantec	model:	norton antivirus for ms exchange	scope:	ne	version:	2.1	Trust: 0.3
vendor:	symantec	model:	norton antivirus for ms exchange	scope:	ne	version:	2.0	Trust: 0.3
vendor:	symantec	model:	norton antivirus for ms exchange	scope:	ne	version:	1.5	Trust: 0.3
vendor:	symantec	model:	norton antivirus corporate edition	scope:	ne	version:	7.6	Trust: 0.3
vendor:	symantec	model:	norton antivirus for macintosh	scope:	ne	version:	9.0	Trust: 0.3
vendor:	symantec	model:	norton antivirus for macintosh	scope:	ne	version:	8.0	Trust: 0.3
vendor:	symantec	model:	norton antivirus for macintosh	scope:	ne	version:	7.0	Trust: 0.3
vendor:	symantec	model:	norton antivirus	scope:	ne	version:	2005	Trust: 0.3
vendor:	symantec	model:	norton antivirus	scope:	ne	version:	20030	Trust: 0.3
vendor:	symantec	model:	mail-gear	scope:	ne	version:	1.1	Trust: 0.3
vendor:	symantec	model:	mail-gear	scope:	ne	version:	1.0	Trust: 0.3
vendor:	symantec	model:	mail security for smtp	scope:	ne	version:	4.1	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange build	scope:	ne	version:	4.697	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange build	scope:	ne	version:	4.5743	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange build	scope:	ne	version:	4.5741	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange build	scope:	ne	version:	4.5736	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange build	scope:	ne	version:	4.0465	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange build	scope:	ne	version:	4.0463	Trust: 0.3
vendor:	symantec	model:	mail security for microsoft exchange build	scope:	ne	version:	4.0456	Trust: 0.3
vendor:	symantec	model:	mail security for domino	scope:	ne	version:	4.1	Trust: 0.3
vendor:	symantec	model:	mail security for domino	scope:	ne	version:	4.0.1	Trust: 0.3
vendor:	symantec	model:	mail security for domino build	scope:	ne	version:	4.04.0.1	Trust: 0.3
vendor:	symantec	model:	i-gear ms proxy	scope:	ne	version:	3.5	Trust: 0.3
vendor:	symantec	model:	client security for nokia communicator	scope:	ne	version:	-	Trust: 0.3
vendor:	symantec	model:	client security mr3 b9.0.3.1000	scope:	ne	version:	2.0.3	Trust: 0.3
vendor:	symantec	model:	client security mr2 b9.0.2.1000	scope:	ne	version:	2.0.2	Trust: 0.3
vendor:	symantec	model:	client security mr1 b9.0.1.1000	scope:	ne	version:	2.0.1	Trust: 0.3
vendor:	symantec	model:	client security stm build	scope:	ne	version:	2.09.0.0.338	Trust: 0.3
vendor:	symantec	model:	client security mr6 b8.1.1.266	scope:	ne	version:	1.1.1	Trust: 0.3
vendor:	symantec	model:	client security stm b8.1.0.825a	scope:	ne	version:	1.1	Trust: 0.3
vendor:	symantec	model:	client security mr9 b8.01.501	scope:	ne	version:	1.0.1	Trust: 0.3
vendor:	symantec	model:	client security mr2 b8.01.429c	scope:	ne	version:	1.0.1	Trust: 0.3
vendor:	symantec	model:	client security mr1 b8.01.425a/b	scope:	ne	version:	1.0.1	Trust: 0.3
vendor:	symantec	model:	client security b8.01.9378	scope:	ne	version:	1.0.0	Trust: 0.3
vendor:	symantec	model:	client security b8.01.9374	scope:	ne	version:	1.0	Trust: 0.3
vendor:	symantec	model:	brightmail anti-spam	scope:	ne	version:	6.0.1	Trust: 0.3
vendor:	symantec	model:	brightmail anti-spam	scope:	ne	version:	6.0	Trust: 0.3
vendor:	symantec	model:	antivirus/filtering for domino ports	scope:	ne	version:	3.0.7	Trust: 0.3
vendor:	symantec	model:	antivirus/filtering for domino ports	scope:	ne	version:	3.0.6	Trust: 0.3
vendor:	symantec	model:	antivirus/filtering for domino ports	scope:	ne	version:	3.0.5	Trust: 0.3
vendor:	symantec	model:	antivirus/filtering for domino nt	scope:	ne	version:	3.1.1	Trust: 0.3
vendor:	symantec	model:	antivirus/filtering for domino nt	scope:	ne	version:	3.1	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for netapp netcache build	scope:	ne	version:	4.34.3.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for netapp filer build	scope:	ne	version:	4.34.3.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for microsoft portal	scope:	ne	version:	4.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for isa build	scope:	ne	version:	4.34.3.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for filers build	scope:	ne	version:	4.34.3.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine for bluecoat build	scope:	ne	version:	4.34.3.3	Trust: 0.3
vendor:	symantec	model:	antivirus scan engine	scope:	ne	version:	4.3.3	Trust: 0.3
vendor:	symantec	model:	antivirus for smtp	scope:	ne	version:	3.1.7	Trust: 0.3
vendor:	symantec	model:	antivirus for smtp build	scope:	ne	version:	3.03.0.0.29	Trust: 0.3
vendor:	symantec	model:	antivirus for ms office sharepoint portal server	scope:	ne	version:	2003	Trust: 0.3
vendor:	symantec	model:	antivirus for microsoft office	scope:	ne	version:	-	Trust: 0.3
vendor:	symantec	model:	antivirus for handhelds corporate edition	scope:	ne	version:	3.0	Trust: 0.3
vendor:	symantec	model:	antivirus for handhelds	scope:	ne	version:	3.0.0.194	Trust: 0.3
vendor:	symantec	model:	antivirus for handhelds	scope:	ne	version:	3.0	Trust: 0.3
vendor:	symantec	model:	antivirus for caching	scope:	ne	version:	4.3.3	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition	scope:	ne	version:	9.0.3.1000	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition	scope:	ne	version:	9.0.2.1000	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition	scope:	ne	version:	9.0.1.1.1000	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition	scope:	ne	version:	9.0.0.338	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition	scope:	ne	version:	8.1.1.366	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition .0.825a	scope:	ne	version:	8.1	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition	scope:	ne	version:	8.01.9378	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition	scope:	ne	version:	8.01.9374	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition	scope:	ne	version:	8.01.501	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition 1.429c	scope:	ne	version:	8.0	Trust: 0.3
vendor:	symantec	model:	antivirus corporate edition 1.425a/b	scope:	ne	version:	8.0	Trust: 0.3
vendor:	symantec	model:	antispam for smtp	scope:	ne	version:	3.1	Trust: 0.3

sources: CERT/CC: VU#107822 // BID: 12492 // CNNVD: CNNVD-200502-011 // NVD: CVE-2005-0249

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2005-0249
value:	HIGH
Trust: 1.0
CARNEGIE MELLON:	VU#107822
value:	20.14
Trust: 0.8
CNNVD:	CNNVD-200502-011
value:	HIGH
Trust: 0.6
VULHUB:	VHN-11458
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2005-0249
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-11458
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#107822 // VULHUB: VHN-11458 // CNNVD: CNNVD-200502-011 // NVD: CVE-2005-0249

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2005-0249

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200502-011

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-200502-011

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-11458

PATCH

title:

Symantec AntiVirus UPX Fixes for file parsing library heap overflow vulnerability

url:

http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=98499

Trust: 0.6

sources: CNNVD: CNNVD-200502-011

EXTERNAL IDS

db:	SECTRACK	id:	1013133	Trust: 2.5
db:	CERT/CC	id:	VU#107822	Trust: 2.5
db:	NVD	id:	CVE-2005-0249	Trust: 2.0
db:	SECUNIA	id:	14179	Trust: 0.9
db:	CNNVD	id:	CNNVD-200502-011	Trust: 0.6
db:	BID	id:	12492	Trust: 0.4
db:	VULHUB	id:	VHN-11458	Trust: 0.1
db:	PACKETSTORM	id:	36129	Trust: 0.1

sources: CERT/CC: VU#107822 // VULHUB: VHN-11458 // BID: 12492 // PACKETSTORM: 36129 // CNNVD: CNNVD-200502-011 // NVD: CVE-2005-0249

REFERENCES

url:	http://xforce.iss.net/xforce/alerts/id/187	Trust: 2.6
url:	http://www.kb.cert.org/vuls/id/107822	Trust: 1.7
url:	http://www.symantec.com/avcenter/security/content/2005.02.08.html	Trust: 1.7
url:	http://securitytracker.com/id?1013133	Trust: 1.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/18869	Trust: 1.7
url:	http://www.sarc.com/avcenter/security/content/2005.02.08.html	Trust: 0.9
url:	http://secunia.com/advisories/14179/	Trust: 0.9
url:	http://www.sarc.com/avcenter/venc/data/bloodhound.exploit.26.html	Trust: 0.8
url:	http://service1.symantec.com/support/ent-security.nsf/docid/2005020911112648	Trust: 0.8
url:	http://securitytracker.com/alerts/2005/feb/1013133.html	Trust: 0.8
url:	http://securityresponse.symantec.com/avcenter/security/content/2005.02.08.html	Trust: 0.3
url:	http://www.symantec.com	Trust: 0.3
url:	/archive/1/390214	Trust: 0.3
url:	http://secunia.com/product/2796/	Trust: 0.1
url:	http://secunia.com/product/2800/	Trust: 0.1
url:	http://secunia.com/product/3478/	Trust: 0.1
url:	http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org	Trust: 0.1
url:	http://secunia.com/product/3104/	Trust: 0.1
url:	http://secunia.com/product/2231/	Trust: 0.1
url:	http://secunia.com/product/2442/	Trust: 0.1
url:	http://secunia.com/about_secunia_advisories/	Trust: 0.1
url:	http://secunia.com/product/1017/	Trust: 0.1
url:	http://secunia.com/product/4625/	Trust: 0.1
url:	http://secunia.com/product/3549/	Trust: 0.1
url:	http://secunia.com/product/2441/	Trust: 0.1
url:	http://secunia.com/product/2820/	Trust: 0.1
url:	http://secunia.com/product/2029/	Trust: 0.1
url:	http://secunia.com/product/4628/	Trust: 0.1
url:	http://secunia.com/product/659/	Trust: 0.1
url:	http://secunia.com/product/2813/	Trust: 0.1
url:	http://secunia.com/product/876/	Trust: 0.1
url:	http://secunia.com/secunia_security_advisories/	Trust: 0.1
url:	http://secunia.com/product/3558/	Trust: 0.1
url:	http://secunia.com/product/3040/	Trust: 0.1
url:	http://secunia.com/product/4627/	Trust: 0.1
url:	http://secunia.com/product/4626/	Trust: 0.1
url:	http://secunia.com/product/2344/	Trust: 0.1

sources: CERT/CC: VU#107822 // VULHUB: VHN-11458 // BID: 12492 // PACKETSTORM: 36129 // CNNVD: CNNVD-200502-011 // NVD: CVE-2005-0249

CREDITS

Alex Wheeler

Trust: 0.6

sources: CNNVD: CNNVD-200502-011

SOURCES

db:	CERT/CC	id:	VU#107822
db:	VULHUB	id:	VHN-11458
db:	BID	id:	12492
db:	PACKETSTORM	id:	36129
db:	CNNVD	id:	CNNVD-200502-011
db:	NVD	id:	CVE-2005-0249

LAST UPDATE DATE

2024-08-14T14:00:42.575000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#107822	date:	2005-02-22T00:00:00
db:	VULHUB	id:	VHN-11458	date:	2019-09-20T00:00:00
db:	BID	id:	12492	date:	2009-07-12T10:06:00
db:	CNNVD	id:	CNNVD-200502-011	date:	2019-09-27T00:00:00
db:	NVD	id:	CVE-2005-0249	date:	2019-09-20T13:24:20.587

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#107822	date:	2005-02-10T00:00:00
db:	VULHUB	id:	VHN-11458	date:	2005-02-08T00:00:00
db:	BID	id:	12492	date:	2005-02-08T00:00:00
db:	PACKETSTORM	id:	36129	date:	2005-02-23T04:47:45
db:	CNNVD	id:	CNNVD-200502-011	date:	2005-02-08T00:00:00
db:	NVD	id:	CVE-2005-0249	date:	2005-02-08T05:00:00