Detections
Analytics
Symantec Decomposer Multiple Vulnerabilities (SYM08-006)
high Nessus Plugin ID 31858
Synopsis
The remote Windows host has an application that is affected by multiple vulnerabilities.Description
The remote Symantec product is affected by multiple issues.By sending a specially crafted RAR file to TCP port 1344, an unauthenticated attacker may be able to cause a denial of service condition or execute arbitrary code, subject to privileges of the user running the application.
Solution
Upgrade to :- Symantec Scan Engine 5.1.6.31
- Symantec AntiVirus Scan Engine 4.3.18.43
- Symantec Mail Security for Microsoft Exchange 4.6.8.120/5.0.6.368
See Also
http://www.nessus.org/u?a5b2e816
http://www.nessus.org/u?d096172f
https://www.securityfocus.com/archive/1/488827
https://www.securityfocus.com/archive/1/488828
http://www.symantec.com/avcenter/security/Content/2008.02.27.html
Plugin Details
Severity: High
ID: 31858
File Name: symantec_decomposer_multiple_vulns.nasl
Version: 1.19
Type: local
Agent: windows
Family: Windows
Published: 4/14/2008
Updated: 11/15/2018
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.8
CVSS v2
Risk Factor: High
Base Score: 9
Temporal Score: 6.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:C
Vulnerability Information
CPE: cpe:/a:symantec:scan_engine, cpe:/a:symantec:symantec_antivirus_filtering_domino_mpe, cpe:/a:symantec:symantec_antivirus_network_attached_storage, cpe:/a:symantec:symantec_antivirus_scan_engine, cpe:/a:symantec:symantec_antivirus_scan_engine_caching, cpe:/a:symantec:symantec_antivirus_scan_engine_clearswift, cpe:/a:symantec:symantec_antivirus_scan_engine_for_microsoft_sharepoint, cpe:/a:symantec:symantec_antivirus_scan_engine_for_ms_isa, cpe:/a:symantec:symantec_antivirus_scan_engine_messaging, cpe:/a:symantec:symantec_mail_security_for_microsoft_exchange
Exploit Ease: No known exploits are available
Patch Publication Date: 2/26/2008
Reference Information
CVE: CVE-2008-0308, CVE-2008-0309