Norton Antivirus for MS Exchange Buffer Overflow Vulnerability
BID:1351
Info
Norton Antivirus for MS Exchange Buffer Overflow Vulnerability
| Bugtraq ID: | 1351 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jun 14 2000 12:00AM |
| Updated: | Jun 14 2000 12:00AM |
| Credit: | Posted to Bugtraq on June 14, 2000 by Jim Rosenberg <[email protected]>. |
| Vulnerable: |
Symantec Norton AntiVirus for MS Exchange 2.0 Symantec Norton AntiVirus for MS Exchange 1.5 |
| Not Vulnerable: | |
Discussion
Norton Antivirus for MS Exchange Buffer Overflow Vulnerability
Norton Antivirus for MS Exchange unzip engine improperly handles zip files attached in e-mails. If NAV for Exchange tries to scan a zip archive containing files with long filenames, it will crash and not scan any further emails until the service is restarted.
Norton Antivirus for MS Exchange unzip engine improperly handles zip files attached in e-mails. If NAV for Exchange tries to scan a zip archive containing files with long filenames, it will crash and not scan any further emails until the service is restarted.
Exploit / POC
Norton Antivirus for MS Exchange Buffer Overflow Vulnerability
see discussion
see discussion
Solution / Fix
Norton Antivirus for MS Exchange Buffer Overflow Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
Norton Antivirus for MS Exchange Buffer Overflow Vulnerability
References:
References: