Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Symantec Products CAB Files Memory Corruption Vulnerability
Information
Severity
Severity
Critical
Family
Family
General
CVSSv2 Base
CVSSv2 Base
9.3
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Solution Type
Solution Type
Vendor Patch
Created
Created
11 years ago
Modified
Modified
5 years ago
Summary
This host is installed with Symantec Product and is prone to memory corruption vulnerability.
Insight
Insight
The decomposer engine in Symantec Products fails to perform bounds checking when parsing files from CAB archives.
Affected Software
Affected Software
Symantec Endpoint Protection (SEP) version 11.x Symantec Endpoint Protection Small Business Edition version 12.0.x Symantec AntiVirus Corporate Edition (SAVCE) version 10.x
Solution
Solution
Upgrade to Symantec Endpoint Protection (SEP) version 12.1 or later. ***** NOTE: Ignore this warning if patch or mentioned workaround is applied already. *****