CVE-2006-3454

Currently unrated

Key Information:

Vendor: Symantec
Status: Client Security; Norton Antivirus
Vendor: CVE Published:; 14 September 2006

Summary

Multiple format string vulnerabilities in Symantec AntiVirus Corporate Edition 8.1 up to 10.0, and Client Security 1.x up to 3.0, allow local users to execute arbitrary code via format strings in (1) Tamper Protection and (2) Virus Alert Notification messages.

References

http://securitytracker.com/id?1016842

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/28936

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/446041/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Sep 14, 2006
Vulnerability Reserved
Jul 7, 2006