CVE-2010-2305

Currently unrated

Key Information:

Vendor: Symantec
Status: Sygate Personal Firewall
Vendor: CVE Published:; 16 June 2010

Summary

Buffer overflow in an ActiveX control in SSHelper.dll for Symantec Sygate Personal Firewall 5.6 build 2808 allows remote attackers to execute arbitrary code via a long third argument to the SetRegString method.

References

http://www.exploit-db.com/exploits/13834

exploitx_refsource_EXPLOIT-DB

http://osvdb.org/65539

vdb-entryx_refsource_OSVDB

https://exchange.xforce.ibmcloud.com/vulnerabilities/59408

vdb-entryx_refsource_XF

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 16, 2010
Vulnerability Reserved
Jun 16, 2010