Short Name |
APP:SYMC:AV-MGT-SVC-BOF |
---|---|
Severity |
Critical |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Symantec Antivirus Management Service Stack Overflow |
Release Date |
2006/12/15 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against Symantec Antivirus Management Service. Symantec Antivirus Versions 10.0.x and 10.1.x are vulnerable as well as Client Security 3.0.x and 3.1.x. A successful attack allows attackers to remotely gain control of the target as SYSTEM.
Multiple Symantec products are prone to a remote stack buffer-overflow vulnerability. This issue allows remote attackers to execute arbitrary machine code with SYSTEM-level privileges, facilitating the complete compromise of affected computers. Symantec AntiVirus Corporate Edition 10.1 and Symantec Client Security 3.1 are currently known to be vulnerable to this issue. All supported platforms are affected including Microsoft Windows and Novell Netware.