Secunia Logo  


Secunia PSI WorldMap
 
CVE Reference: CVE-2008-0312
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2008-0312

Description:
Stack-based buffer overflow in the AutoFix Support Tool ActiveX control 2.7.0.1 in SYMADATA.DLL in multiple Symantec Norton products, including Norton 360 1.0, AntiVirus 2006 through 2008, Internet Security 2006 through 2008, and System Works 2006 through 2008, allows remote attackers to execute arbitrary code via a long argument to the GetEventLogInfo method. NOTE: some of these details are obtained from third party information.

CVE Status:
Candidate

References:

ST
  1019751
  1019752
  1019753

SAID
  Secunia Advisory: SA29660

IDEFENSE
  http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=677

CONFIRM
  http://securityresponse.symantec.com/avcenter/security/Content/2008.04.02a.html

BID
  28507


Return to the previous page.