← volver
CVE-2006-3454

CVE-2006-3454

EPSS 0.5%
Multiple format string vulnerabilities in Symantec AntiVirus Corporate Edition 8.1 up to 10.0, and Client Security 1.x up to 3.0, allow local users to execute arbitrary code via format strings in (1) Tamper Protection and (2) Virus Alert Notification messages.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://layereddefense.com/SAV13SEPT.htmlhttp://secunia.com/advisories/21884http://securityresponse.symantec.com/avcenter/security/Content/2006.09.13.htmlhttp://securitytracker.com/id?1016842https://exchange.xforce.ibmcloud.com/vulnerabilities/28936http://www.securityfocus.com/archive/1/446041/100/0/threadedhttp://www.securityfocus.com/archive/1/446293/100/0/threadedhttp://www.securityfocus.com/bid/19986http://www.vupen.com/english/advisories/2006/3599