Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for antivirus_scan_engine_for_network_attached_storage by symantec

    CVE-2005-2758 (GCVE-0-2005-2758)

    Vulnerability from nvd – Published: 2005-10-05 04:00 – Updated: 2024-08-07 22:45
    VLAI
    Summary
    Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote attackers to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.idefense.com/application/poi/display?i… third-party-advisoryx_refsource_IDEFENSE
    http://www.securityfocus.com/bid/15001 vdb-entryx_refsource_BID
    http://www.kb.cert.org/vuls/id/849209 third-party-advisoryx_refsource_CERT-VN
    http://www.osvdb.org/19854 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2005/1954 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/17049 third-party-advisoryx_refsource_SECUNIA
    http://securitytracker.com/id?1015001 vdb-entryx_refsource_SECTRACK
    http://www.symantec.com/avcenter/security/Content… x_refsource_CONFIRM
    http://securityreason.com/securityalert/48 third-party-advisoryx_refsource_SREASON
    Date Public
    2005-10-04 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T22:45:02.007Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "symantec-scanengine-admin-bo(22519)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22519"
              },
              {
                "name": "20051004 Symantec AntiVirus Scan Engine Web Service Buffer Overflow Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/application/poi/display?id=314\u0026type=vulnerabilities"
              },
              {
                "name": "15001",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/15001"
              },
              {
                "name": "VU#849209",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/849209"
              },
              {
                "name": "19854",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/19854"
              },
              {
                "name": "ADV-2005-1954",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2005/1954"
              },
              {
                "name": "17049",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/17049"
              },
              {
                "name": "1015001",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015001"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.symantec.com/avcenter/security/Content/2005.10.04.html"
              },
              {
                "name": "48",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/48"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2005-10-04T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote attackers to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "symantec-scanengine-admin-bo(22519)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22519"
            },
            {
              "name": "20051004 Symantec AntiVirus Scan Engine Web Service Buffer Overflow Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/application/poi/display?id=314\u0026type=vulnerabilities"
            },
            {
              "name": "15001",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/15001"
            },
            {
              "name": "VU#849209",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/849209"
            },
            {
              "name": "19854",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/19854"
            },
            {
              "name": "ADV-2005-1954",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2005/1954"
            },
            {
              "name": "17049",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/17049"
            },
            {
              "name": "1015001",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015001"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.symantec.com/avcenter/security/Content/2005.10.04.html"
            },
            {
              "name": "48",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/48"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2005-2758",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote attackers to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "symantec-scanengine-admin-bo(22519)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22519"
                },
                {
                  "name": "20051004 Symantec AntiVirus Scan Engine Web Service Buffer Overflow Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/application/poi/display?id=314\u0026type=vulnerabilities"
                },
                {
                  "name": "15001",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/15001"
                },
                {
                  "name": "VU#849209",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/849209"
                },
                {
                  "name": "19854",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/19854"
                },
                {
                  "name": "ADV-2005-1954",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2005/1954"
                },
                {
                  "name": "17049",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/17049"
                },
                {
                  "name": "1015001",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015001"
                },
                {
                  "name": "http://www.symantec.com/avcenter/security/Content/2005.10.04.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.symantec.com/avcenter/security/Content/2005.10.04.html"
                },
                {
                  "name": "48",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/48"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2005-2758",
        "datePublished": "2005-10-05T04:00:00.000Z",
        "dateReserved": "2005-08-31T00:00:00.000Z",
        "dateUpdated": "2024-08-07T22:45:02.007Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2005-2758 (GCVE-0-2005-2758)

    Vulnerability from cvelistv5 – Published: 2005-10-05 04:00 – Updated: 2024-08-07 22:45
    VLAI
    Summary
    Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote attackers to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.idefense.com/application/poi/display?i… third-party-advisoryx_refsource_IDEFENSE
    http://www.securityfocus.com/bid/15001 vdb-entryx_refsource_BID
    http://www.kb.cert.org/vuls/id/849209 third-party-advisoryx_refsource_CERT-VN
    http://www.osvdb.org/19854 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2005/1954 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/17049 third-party-advisoryx_refsource_SECUNIA
    http://securitytracker.com/id?1015001 vdb-entryx_refsource_SECTRACK
    http://www.symantec.com/avcenter/security/Content… x_refsource_CONFIRM
    http://securityreason.com/securityalert/48 third-party-advisoryx_refsource_SREASON
    Date Public
    2005-10-04 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T22:45:02.007Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "symantec-scanengine-admin-bo(22519)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22519"
              },
              {
                "name": "20051004 Symantec AntiVirus Scan Engine Web Service Buffer Overflow Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/application/poi/display?id=314\u0026type=vulnerabilities"
              },
              {
                "name": "15001",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/15001"
              },
              {
                "name": "VU#849209",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/849209"
              },
              {
                "name": "19854",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/19854"
              },
              {
                "name": "ADV-2005-1954",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2005/1954"
              },
              {
                "name": "17049",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/17049"
              },
              {
                "name": "1015001",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015001"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.symantec.com/avcenter/security/Content/2005.10.04.html"
              },
              {
                "name": "48",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/48"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2005-10-04T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote attackers to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "symantec-scanengine-admin-bo(22519)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22519"
            },
            {
              "name": "20051004 Symantec AntiVirus Scan Engine Web Service Buffer Overflow Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/application/poi/display?id=314\u0026type=vulnerabilities"
            },
            {
              "name": "15001",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/15001"
            },
            {
              "name": "VU#849209",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/849209"
            },
            {
              "name": "19854",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/19854"
            },
            {
              "name": "ADV-2005-1954",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2005/1954"
            },
            {
              "name": "17049",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/17049"
            },
            {
              "name": "1015001",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015001"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.symantec.com/avcenter/security/Content/2005.10.04.html"
            },
            {
              "name": "48",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/48"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2005-2758",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote attackers to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "symantec-scanengine-admin-bo(22519)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22519"
                },
                {
                  "name": "20051004 Symantec AntiVirus Scan Engine Web Service Buffer Overflow Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/application/poi/display?id=314\u0026type=vulnerabilities"
                },
                {
                  "name": "15001",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/15001"
                },
                {
                  "name": "VU#849209",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/849209"
                },
                {
                  "name": "19854",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/19854"
                },
                {
                  "name": "ADV-2005-1954",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2005/1954"
                },
                {
                  "name": "17049",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/17049"
                },
                {
                  "name": "1015001",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015001"
                },
                {
                  "name": "http://www.symantec.com/avcenter/security/Content/2005.10.04.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.symantec.com/avcenter/security/Content/2005.10.04.html"
                },
                {
                  "name": "48",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/48"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2005-2758",
        "datePublished": "2005-10-05T04:00:00.000Z",
        "dateReserved": "2005-08-31T00:00:00.000Z",
        "dateUpdated": "2024-08-07T22:45:02.007Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }