Multiple stack-based buffer overflows in IAO.EXE in the Intel Alert Originator Service in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine Server; Symantec AntiVirus (SAV) Corporate Edition 9 prior to 9.0 MR7, 10.0 and 10.1 prior to 10.1 MR8, and 10.2 prior to 10.2 MR2; Symantec Client Security (SCS) 2 prior to 2.0 MR7 and 3 prior to 3.1 MR8; and Symantec Endpoint Protection (SEP) prior to 11.0 MR3, allow remote malicious users to execute arbitrary code via (1) a crafted packet or (2) data that ostensibly arrives from the MsgSys.exe process.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec system center |
||
symantec antivirus - |
||
symantec antivirus 10.0.2.2 |
||
symantec antivirus 10.0.2 |
||
symantec antivirus |
||
symantec antivirus 10.0 |
||
symantec antivirus 10.0.1.1 |
||
symantec antivirus 10.0.6 |
||
symantec antivirus 10.0.7 |
||
symantec client security 3.0.2.2021 |
||
symantec client security 3.0.2.2020 |
||
symantec client security 3.0.1.1009 |
||
symantec client security 3.0.1.1008 |
||
symantec antivirus 10.0.1 |
||
symantec antivirus 10.0.2.1 |
||
symantec antivirus 10.0.8 |
||
symantec antivirus 10.0.9 |
||
symantec client security 3.0.2.2011 |
||
symantec client security 3.0.2.2010 |
||
symantec client security 3.0.1.1007 |
||
symantec client security 3.0.1.1001 |
||
symantec antivirus central quarantine server |
||
symantec antivirus 10.0.3 |
||
symantec antivirus 10.0.4 |
||
symantec antivirus 10.0.5 |
||
symantec client security 3.0 |
||
symantec client security |
||
symantec client security 3.0.2.2000 |
||
symantec client security 3.0.2 |
||
symantec client security 2.0 |
||
symantec client security 3.0.2.2002 |
||
symantec client security 3.0.2.2001 |
||
symantec client security 3.0.1.1000 |
||
symantec client security 3.0.0.359 |
||
symantec endpoint protection |