CVE-2005-0249

Currently unrated

Key Information:

Vendor: Symantec
Status: Norton Internet Security; Client Security; Mail Security; Norton Antivirus
Vendor: CVE Published:; 8 February 2005

Summary

Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote attackers to execute arbitrary code via a UPX compressed file containing a negative virtual offset to a crafted PE header.

References

http://www.kb.cert.org/vuls/id/107822

third-party-advisoryx_refsource_CERT-VN

http://xforce.iss.net/xforce/alerts/id/187

third-party-advisoryx_refsource_ISS

http://securitytracker.com/id?1013133

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Feb 8, 2005
Vulnerability Reserved
Feb 8, 2005