Symantec Scan Engine 5.0.0.24, and possibly other versions prior to 5.1.0.7, uses the same private DSA key for each installation, which allows remote malicious users to conduct man-in-the-middle attacks and decrypt communications.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec antivirus scan engine 5.0.0.24 |