Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote malicious users to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec antivirus scan engine 4.3 |
||
symantec antivirus scan engine 4.0 |
||
symantec antivirus scan engine for network attached storage 4.3 |