Описание
Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote attackers to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow.
Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote attackers to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-2758
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22519
- http://secunia.com/advisories/17049
- http://securityreason.com/securityalert/48
- http://securitytracker.com/id?1015001
- http://www.idefense.com/application/poi/display?id=314&type=vulnerabilities
- http://www.kb.cert.org/vuls/id/849209
- http://www.osvdb.org/19854
- http://www.securityfocus.com/bid/15001
- http://www.symantec.com/avcenter/security/Content/2005.10.04.html
- http://www.vupen.com/english/advisories/2005/1954
EPSS
Процентиль: 96%
0.23973
Средний
CVE ID
Связанные уязвимости
nvd
больше 20 лет назад
Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote attackers to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow.
EPSS
Процентиль: 96%
0.23973
Средний