|
|
|||
| Rule General Information |
|---|
| Release Date: | 2019-09-27 | |
| Rule Name: | Symantec Products cliproxy ActiveX Control Buffer Overflow Vulnerability -1 (CVE-2010-0108) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Buffer overflow in the cliproxy.objects.1 ActiveX control in the Symantec Client Proxy (CLIproxy.dll) in Symantec AntiVirus 10.0.x, 10.1.x before MR9, and 10.2.x before MR4; and Symantec Client Security 3.0.x and 3.1.x before MR9 allows remote attackers to execute arbitrary code via a long argument to the SetRemoteComputerName function. | |
| Impact: | A buffer overflow vulnerability can be triggered by an attacker in the context of the vulnerable product. Further attacks includes arbitrary code execution and denial of service. | |
| Affected OS: | Windows, Others | |
| Reference: | SecurityFocusBID:38222 http://dsecrg.com/pages/vul/show.php?id=139 http://www.securityfocus.com/archive/1/509681/100/0/threaded http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100217_02 |
|
| Solutions |
|---|
| The vendors have released upgrade patches to fix vulnerabilities, please visit: http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid;=security_advisory&year;=2010&suid;=20100217_02 |