Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
antivirus scan engine vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2758
Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote malicious users to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow.
Symantec Antivirus Scan Engine 4.3
Symantec Antivirus Scan Engine 4.0
Symantec Antivirus Scan Engine For Network Attached Storage 4.3
NA
CVE-2008-0309
Stack-based buffer overflow in Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions prior to 5.1.6.31, allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) v...
Symantec Symantec Antivirus Scan Engine
Symantec Symantec Antivirus Scan Engine Caching
Symantec Scan Engine
Symantec Symantec Antivirus Scan Engine Clearswift
Symantec Symantec Antivirus Scan Engine For Microsoft Sharepoint
Symantec Symantec Antivirus Filtering Domino Mpe
Symantec Symantec Antivirus Scan Engine For Ms Isa
Symantec Symantec Antivirus Scan Engine Messaging
Symantec Symantec Antivirus Network Attached Storage
Symantec Symantec Mail Security For Microsoft Exchange
NA
CVE-2005-3217
Multiple interpretation error in unspecified versions of Symantec Antivirus allows remote malicious users to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as W...
Symantec Antivirus Scan Engine
NA
CVE-2006-0230
Symantec Scan Engine 5.0.0.24, and possibly other versions prior to 5.1.0.7, uses a client-side check to verify a password, which allows remote malicious users to gain administrator privileges via a modified client that sends certain XML requests.
Symantec Antivirus Scan Engine 5.0.0.24
1 EDB exploit
NA
CVE-2006-0231
Symantec Scan Engine 5.0.0.24, and possibly other versions prior to 5.1.0.7, uses the same private DSA key for each installation, which allows remote malicious users to conduct man-in-the-middle attacks and decrypt communications.
Symantec Antivirus Scan Engine 5.0.0.24
NA
CVE-2006-0232
Symantec Scan Engine 5.0.0.24, and possibly other versions prior to 5.1.0.7, stores sensitive log and virus definition files under the web root with insufficient access control, which allows remote malicious users to obtain the information via direct requests.
Symantec Antivirus Scan Engine 5.0.0.24
NA
CVE-2008-0308
Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions prior to 5.1.6.31, allows remote malicious users to cause a denial of service (memory consumption) via a malformed RAR file to the Internet Content Adaptati...
Symantec Symantec Antivirus Filtering Domino Mpe
Symantec Symantec Mail Security Exchange
Symantec Symantec Antivirus Messaging
Symantec Symantec Antivirus Microsoft Sharepoint
Symantec Symantec Antivirus Ms Isa
Symantec Scan Engine
Symantec Symantec Antivirus Clearswift
Symantec Symantec Antivirus Network Attached Storage
Symantec Symantec Antivirus Scan Engine
Symantec Symantec Antivirus Scan Engine Caching
NA
CVE-2012-4953
The decomposer engine in Symantec Endpoint Protection (SEP) 11.0, Symantec Endpoint Protection Small Business Edition 12.0, Symantec AntiVirus Corporate Edition (SAVCE) 10.x, and Symantec Scan Engine (SSE) prior to 5.2.8 does not properly perform bounds checks of the contents of ...
Symantec Antivirus 10.1.6
Symantec Antivirus 10.1.5
Symantec Endpoint Protection 12.0
Symantec Antivirus 10.1.9
Symantec Scan Engine
Symantec Antivirus 10.1.8
Symantec Antivirus 10.1.7
Symantec Endpoint Protection 11.0
Symantec Antivirus 10.1.4
Symantec Antivirus 10.1.0
NA
CVE-2005-0644
Buffer overflow in McAfee Scan Engine 4320 with DAT version prior to 4436 allows remote malicious users to execute arbitrary code via a malformed LHA file with a type 2 header file name field, a variant of CVE-2005-0643.
Mcafee Antivirus Engine 4.3.20
NA
CVE-2007-3699
The Decomposer component in multiple Symantec products allows remote malicious users to cause a denial of service (infinite loop) via a certain value in the PACK_SIZE field of a RAR archive file header.
Symantec Antivirus Scan Engine 4.0
Symantec Antivirus Scan Engine 4.3.12
Symantec Antivirus Scan Engine 4.3
Symantec Brightmail Antispam 6.0.2
Symantec Brightmail Antispam 6.0.3
Symantec Client Security 2.0.4
Symantec Client Security 2.0.5 Build 1100 Mp1
Symantec Client Security 3.0.1.1007
Symantec Client Security 3.0.1.1008
Symantec Client Security 3.0.2.2021
Symantec Client Security 3.1
Symantec Mail Security 4.0
Symantec Mail Security 4.1
Symantec Mail Security 4.5.4.743
Symantec Mail Security 4.6 Build 97
Symantec Mail Security 5.0.0.204
Symantec Norton Antivirus 10.0.0.359
Symantec Norton Antivirus 10.0.0
Symantec Norton Antivirus 10.0.2.2010
Symantec Norton Antivirus 10.0.2.2011
Symantec Norton Antivirus 10.1.4.4010
Symantec Norton Antivirus 10.1.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »