Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
antivirus engine vulnerabilities and exploits
(subscribe to this query)
5.1
CVSSv2
CVE-2005-3217
Multiple interpretation error in unspecified versions of Symantec Antivirus allows remote malicious users to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as W...
Symantec Antivirus Scan Engine
7.5
CVSSv2
CVE-2005-0643
Buffer overflow in McAfee Scan Engine 4320 with DAT version prior to 4357 allows remote malicious users to execute arbitrary code via crafted LHA files.
Mcafee Antivirus Engine 4.3.20
1 EDB exploit
4.9
CVSSv2
CVE-2017-10674
Antiy Antivirus Engine 5.0.0.06281654 allows local users to cause a denial of service (BSOD) via a long third argument in a DeviceIoControl call.
Antiy Antivirus Engine 5.0.0.06281654
10
CVSSv2
CVE-2006-0230
Symantec Scan Engine 5.0.0.24, and possibly other versions prior to 5.1.0.7, uses a client-side check to verify a password, which allows remote malicious users to gain administrator privileges via a modified client that sends certain XML requests.
Symantec Antivirus Scan Engine 5.0.0.24
1 EDB exploit
6.4
CVSSv2
CVE-2006-0231
Symantec Scan Engine 5.0.0.24, and possibly other versions prior to 5.1.0.7, uses the same private DSA key for each installation, which allows remote malicious users to conduct man-in-the-middle attacks and decrypt communications.
Symantec Antivirus Scan Engine 5.0.0.24
5
CVSSv2
CVE-2006-0232
Symantec Scan Engine 5.0.0.24, and possibly other versions prior to 5.1.0.7, stores sensitive log and virus definition files under the web root with insufficient access control, which allows remote malicious users to obtain the information via direct requests.
Symantec Antivirus Scan Engine 5.0.0.24
9.3
CVSSv2
CVE-2012-4953
The decomposer engine in Symantec Endpoint Protection (SEP) 11.0, Symantec Endpoint Protection Small Business Edition 12.0, Symantec AntiVirus Corporate Edition (SAVCE) 10.x, and Symantec Scan Engine (SSE) prior to 5.2.8 does not properly perform bounds checks of the contents of ...
Symantec Antivirus 10.1.6
Symantec Antivirus 10.1.5
Symantec Endpoint Protection 12.0
Symantec Antivirus 10.1.9
Symantec Scan Engine
Symantec Antivirus 10.1.8
Symantec Antivirus 10.1.7
Symantec Endpoint Protection 11.0
Symantec Antivirus 10.1.4
Symantec Antivirus 10.1.0
5
CVSSv2
CVE-2008-3447
The scanning engine in F-Prot Antivirus 6.2.1 4252 allows remote malicious users to cause a denial of service (infinite loop) via a malformed ZIP archive, probably related to invalid offsets.
F-prot F-prot Antivirus 6.2.1.4252
F-prot Scanning Engine 4.4.4.56
1 EDB exploit
9.3
CVSSv2
CVE-2007-0447
Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote malicious users to execute arbitrary code via multiple crafted CAB archives.
Symantec Antivirus Scan Engine 4.3.12
Symantec Antivirus Scan Engine 4.3
Symantec Brightmail Antispam 6.0.1
Symantec Brightmail Antispam 6.0.2
Symantec Client Security 2.0.4
Symantec Client Security 3.0.1.1001
Symantec Client Security 3.0.1.1007
Symantec Client Security 3.0.2.2020
Symantec Client Security 3.0.2.2021
Symantec Mail Security 4.0
Symantec Mail Security 4.1
Symantec Mail Security 4.6.3
Symantec Mail Security 4.6 Build 97
Symantec Norton Antivirus
Symantec Norton Antivirus 10.0.0.359
Symantec Norton Antivirus 10.0.2.2002
Symantec Norton Antivirus 10.0.2.2010
Symantec Norton Antivirus 10.1.396
Symantec Norton Antivirus 10.1.4.4010
Symantec Norton Antivirus 2004
Symantec Norton Antivirus 2005
Symantec Norton Antivirus 9.0.1.1.1000
9.3
CVSSv2
CVE-2007-3699
The Decomposer component in multiple Symantec products allows remote malicious users to cause a denial of service (infinite loop) via a certain value in the PACK_SIZE field of a RAR archive file header.
Symantec Antivirus Scan Engine 4.0
Symantec Antivirus Scan Engine 4.3.12
Symantec Antivirus Scan Engine 4.3
Symantec Brightmail Antispam 6.0.2
Symantec Brightmail Antispam 6.0.3
Symantec Client Security 2.0.4
Symantec Client Security 2.0.5 Build 1100 Mp1
Symantec Client Security 3.0.1.1007
Symantec Client Security 3.0.1.1008
Symantec Client Security 3.0.2.2021
Symantec Client Security 3.1
Symantec Mail Security 4.0
Symantec Mail Security 4.1
Symantec Mail Security 4.5.4.743
Symantec Mail Security 4.6 Build 97
Symantec Mail Security 5.0.0.204
Symantec Norton Antivirus 10.0.0.359
Symantec Norton Antivirus 10.0.0
Symantec Norton Antivirus 10.0.2.2010
Symantec Norton Antivirus 10.0.2.2011
Symantec Norton Antivirus 10.1.4.4010
Symantec Norton Antivirus 10.1.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
command injection
CVE-2021-47511
CVE-2024-26238
CVE-2024-4858
CVE-2024-21305
XXE
CVE-2021-47555
CVE-2021-47526
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »