Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

CVE-2007-0447

CVE information

Published

15 years ago

Last Modified

10 years ago

CVSSv2.0 Severity

High

Impact Analysis

Description

Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote attackers to execute arbitrary code via multiple crafted CAB archives..

CVSSv2.0 Score

Severity
High
Base Score
9.3/10
Exploit Score
8.6/10
Access Vector
Network
Access Complexity
Medium
Authentication Required
None
Impact Score
10/10
Confidentiality Impact
Complete
Availability Impact
Complete
Integrity Impact
Complete

Products Affected

CPE Affected Vulnerable Excluding Edit
cpe:2.3:a:symantec:mail_security:4.0:build741:microsoft_exch
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2011:*:corporate_
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:2004:*:professional:*:*:
  Yes
- -
cpe:2.3:a:symantec:norton_internet_security:2006:*:professio
  Yes
- -
cpe:2.3:a:symantec:norton_internet_security:2004:*:professio
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:5.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.1.1.1000:*:corporate
  Yes
- -
cpe:2.3:a:symantec:web_security:3.0.1_build_3.01.74:*:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:brightmail_antispam:6.0.2:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.2.2020:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.1.396:*:corporate_edi
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3:*:network_attac
  Yes
- -
cpe:2.3:a:symantec:brightmail_antispam:6.0.3:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:2.0.6:mr6:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.1.1000:*:corporate_
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.2:*:macintosh:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:norton_internet_security:2005:11.5.6.14:*
  Yes
- -
cpe:2.3:a:symantec:norton_system_works:2005:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:5.0:*:smtp:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.1.1008:*:corporate_
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:2005:11.0.9:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:web_security:2.5:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2001:*:corporate_
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.1:*:corporate_edition
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.0:*:macintosh:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.12:*:caching:*:
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.12:*:clearswift
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3:*:clearswift:*:
  Yes
- -
cpe:2.3:a:symantec:client_security:2.0.4:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.2.2021:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:*:*:corporate_edition_fo
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2010:*:corporate_
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.1.1008:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.5:*:microsoft_exchange:*:
  Yes
- -
cpe:2.3:a:symantec:mail_security:5.0.1:*:smtp:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.0:*:macintosh:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.1.4:mr4_mp1_build4010
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.2.1000:*:corporate_e
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.6.1000:*:corporate_e
  Yes
- -
cpe:2.3:a:symantec:web_security:3.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:web_security:3.01.61:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:web_security:3.01.62:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:2.0.1_build_9.0.1.1000:mr
  Yes
- -
cpe:2.3:a:symantec:client_security:2.0:build_9.0.0.338:stm:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.2.2002:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.0:build465:microsoft_exch
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.5_build_736:*:exchange:*:
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.1:*:macintosh:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0:*:corporate_edition
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.3:*:macintosh:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:norton_internet_security:2004:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:symantec_antivirus_filtering_\+for_domino
  Yes
- -
cpe:2.3:a:symantec:web_security:3.0.1.70:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.7.27:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:client_security:2.0.3_build_9.0.3.1000:mr
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.1.1000:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.0.1:*:domino:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.0:build743:microsoft_exch
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.1:build458:microsoft_exch
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.0.338:*:corporate_ed
  Yes
- -
cpe:2.3:a:symantec:web_security:3.0.1_build_3.01.70:*:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:client_security:2.0.4:mr4_build1000:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.1.1001:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.0:*:domino:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.1:build459:microsoft_exch
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.1:build461:microsoft_exch
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.6.3:*:microsoft_exchange:
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.6_build_97:*:exchange:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2002:*:corporate_
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:2004:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:2005:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.1:*:macintosh:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.0:*:clearswift:*:
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.12:*:messaging:
  Yes
- -
cpe:2.3:a:symantec:client_security:2.0.5_build_1100_mp1:mr5:
  Yes
- -
cpe:2.3:a:symantec:client_security:3.1:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.0:build456:microsoft_exch
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.0:build463:microsoft_exch
  Yes
- -
cpe:2.3:a:symantec:mail_security:5.0.0.204:*:microsoft_excha
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.1.1007:*:corporate_
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2020:*:corporate_
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.1.4:*:corporate_editi
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:2005:11.0:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_internet_security:2006:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:web_security:3.0.1:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.1:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.1.8:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.12:*:network_at
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.3:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:5.0.1:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:2.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:2.0:*:scf_7.1:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.2.2001:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.1.396:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.1.400:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:5.0:*:microsoft_exchange:*:
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2021:*:corporate_
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.1.400:*:corporate_edi
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.1.401:*:corporate_edi
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:2006:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.3.1000:*:corporate_e
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.5.1100:*:corporate_e
  Yes
- -
cpe:2.3:a:symantec:norton_internet_security:2005:11.0:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:norton_internet_security:2005:11.0.9:*:*:
  Yes
- -
cpe:2.3:a:symantec:web_security:3.01.60:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:web_security:3.01.63:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:web_security:3.01.67:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.12:*:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.8.29:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3:*:caching:*:*:*
  Yes
- -
cpe:2.3:a:symantec:brightmail_antispam:5.5:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:brightmail_antispam:6.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.0.359:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.2.2010:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.2.2011:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.1.401:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.6.1.107:*:microsoft_excha
  Yes
- -
cpe:2.3:a:symantec:mail_security:5.1.0:*:domino:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2000:*:corporate_
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0:*:macintosh:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.1.394:*:corporate_edi
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.9.1:*:macintosh:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.4:*:corporate_editio
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.4:mr4_build_1000:cor
  Yes
- -
cpe:2.3:a:symantec:norton_internet_security:2005:*:professio
  Yes
- -
cpe:2.3:a:symantec:norton_personal_firewall:2006:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_personal_firewall:2006_9.1.0.33:*:
  Yes
- -
cpe:2.3:a:symantec:norton_system_works:2006:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_system_works:3.0:*:macintosh:*:*:*
  Yes
- -
cpe:2.3:a:symantec:web_security:3.0.1_build_3.01.72:*:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:web_security:3.01.68:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:web_security:5.0:*:microsoft_isa_2004:*:*
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3:*:microsoft_sha
  Yes
- -
cpe:2.3:a:symantec:brightmail_antispam:6.0.1:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.1.1007:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.0:*:microsoft_exchange:*:
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.0.0.359:*:corporate_e
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:10.1.4.4010:*:corporate_
  Yes
- -
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.12:*:microsoft_
  Yes
- -
cpe:2.3:a:symantec:brightmail_antispam:6.0.4:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.0.2.2000:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:3.1.394:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.5.4.743:*:microsoft_excha
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:2005:*:professional:*:*:
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0:*:corporate_edition:
  Yes
- -
cpe:2.3:a:symantec:norton_system_works:2005:*:premier:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:brightmail_antispam:4.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.0:build736:microsoft_exch
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.5_build_719:*:exchange:*:
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0:*:macintosh:*:*:*:*:
  Yes
- -
cpe:2.3:a:symantec:norton_internet_security:3.0:*:macintosh:
  Yes
- -
cpe:2.3:a:symantec:norton_system_works:2005:11.0:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_antivirus:9.0.5:*:corporate_editio
  Yes
- -
cpe:2.3:a:symantec:norton_personal_firewall:2006_9.1.1.7:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_system_works:2004:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:web_security:3.01.59:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:norton_system_works:2005:11.0.9:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:web_security:3.0.1.76:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:symantec:client_security:2.0.2_build_9.0.2.1000:mr
  Yes
- -
cpe:2.3:a:symantec:mail_security:4.5_build_741:*:exchange:*:
  Yes
- -
cpe:2.3:a:symantec:mail_security:6.0.0:*:microsoft_exchange:
  Yes
- -
cpe:2.3:a:symantec:norton_internet_security:2005:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:symantec:gateway_security_5400:2.0.1:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:symantec:mail_security_8820_appliance:*:*:*:*:*:*:
  Yes
- -
cpe:2.3:h:symantec:gateway_security_5000_series:3.0.1:*:*:*:
  Yes
- -