Detections
Analytics
Symantec Mail Security for SMTP Autonomy KeyView Module Multiple Buffer Overflows
high Nessus Plugin ID 68936
Language:
Synopsis
The remote host has software installed that is affected by multiple buffer overflow vulnerabilities.Description
The remote windows host has a version of Symantec Mail Security installed that is shipped with the third-party Autonomy KeyView module, which is affected by multiple buffer overflow vulnerabilities that could allow a remote attacker to execute arbitrary code.Solution
Apply the appropriate patch per the vendor's advisory.See Also
http://www.symantec.com/avcenter/security/Content/2008.04.08e.html
Plugin Details
Severity: High
ID: 68936
File Name: symantec_sms_smtp_sym_08-010.nasl
Version: 1.10
Type: local
Agent: windows
Family: Windows
Published: 7/17/2013
Updated: 11/27/2019
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: High
Base Score: 9.3
Temporal Score: 6.9
Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2008-1101
Vulnerability Information
CPE: cpe:/a:symantec:mail_security
Required KB Items: SMB/Registry/Enumerated, Symantec/SMSSMTP/Version
Exploit Ease: No known exploits are available
Patch Publication Date: 4/8/2008
Vulnerability Publication Date: 4/8/2008
Reference Information
CVE: CVE-2007-5399, CVE-2007-5405, CVE-2007-5406, CVE-2007-6020, CVE-2008-0066, CVE-2008-1101
BID: 28454
CWE: 119
IAVB: 2008-B-0039