CVE-2005-0249

Severity

75%

Complexity

99%

Confidentiality

106%

Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote attackers to execute arbitrary code via a UPX compressed file containing a negative virtual offset to a crafted PE header.

Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote attackers to execute arbitrary code via a UPX compressed file containing a negative virtual offset to a crafted PE header.

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

Type

Symantec

First reported 20 years ago

2005-02-08 05:00:00

Last updated 5 years ago

2019-09-20 13:24:00

Affected Software

Symantec AntiVirus Scan Engine

Symantec BrightMail AntiSpam 4.0

4.0

Symantec BrightMail AntiSpam 5.5

5.5

Symantec Symantec Client Security 1.0.1 MR3 build 8.01.434

1.0.1_build_8.01.434

Symantec Symantec Client Security 1.0.1 build 8.01.437

1.0.1_build_8.01.437

Symantec Symantec Client Security 1.0.1 MR4 build 8.01.446

1.0.1_build_8.01.446

Symantec Symantec Client Security 1.0.1 MR5 build 8.01.457

1.0.1_build_8.01.457

Symantec Symantec Client Security 1.0.1 MR6 build 8.01.460

1.0.1_build_8.01.460

Symantec Symantec Client Security 1.0.1 MR7 build 8.01.464

1.0.1_build_8.01.464

Symantec Symantec Client Security 1.0.1 MR8 build 8.01.471

1.0.1_build_8.01.471

Symantec Client Security 1.1.1 MR1 Build 8.1.1.314a

1.1.1_mr1_build_8.1.1.314a

Symantec Client Security 1.1.1 MR2 Build 8.1.1.319

1.1.1_mr2_build_8.1.1.319

Symantec Client Security 1.1.1 MR3 Build 8.1.1.323

1.1.1_mr3_build_8.1.1.323

Symantec Client Security 1.1.1 MR4 Build 8.1.1.329

1.1.1_mr4_build_8.1.1.329

Symantec Client Security 1.1.1 MR5 Build 8.1.1.336

1.1.1_mr5_build_8.1.1.336

Symantec Gateway Security 1.0

1.0

Symantec Gateway Security 2.0

2.0

Symantec Gateway Security 2.0.1

2.0.1

Symantec Mail Security 4.0 Domino Edition

4.0

Symantec Mail Security 4.1 Build 458 Exchange Edition

4.1

Symantec Mail Security 4.1 Build 459 Exchange Edition

4.1

Symantec Mail Security 4.1 Build 461 Exchange Edition

4.1

Symantec Mail Security 4.5 build719 Exchange

4.5_build_719

Symantec Norton Antivirus 2.18 Build 83 Exchange Edition

2.18_build_83

Symantec Norton Antivirus 8.1.1.319 Corporate Edition

8.1.1.319

Symantec Norton Antivirus 8.1.1.323 Corporate Edition

8.1.1.323

Symantec Norton Antivirus 8.1.1.329 Corporate Edition

8.1.1.329

Symantec Norton Antivirus 8.1.1 Build8.1.1.314a Corporate Edition

8.1.1_build8.1.1.314a

Symantec Norton Antivirus 8.01.434 Corporate Edition

8.01.434

Symantec Norton Antivirus 8.01.437 Corporate Edition

8.01.437

Symantec Norton Antivirus 8.01.446 Corporate Edition

8.01.446

Symantec Norton Antivirus 8.01.457 Corporate Edition

8.01.457

Symantec Norton Antivirus 8.01.460 Corporate Edition

8.01.460

Symantec Norton Antivirus 8.01.464 Corporate Edition

8.01.464

Symantec Norton Antivirus 8.01.471 Corporate Edition

8.01.471

Symantec Norton Antivirus 9.0 Macintosh Corporate Edition

9.0

Symantec Norton Antivirus 2004 Windows Edition

2004

Symantec Norton Internet Security 2004 Professional Edition

2004

Symantec Norton System Works 2004 Windows Edition

2004

Symantec Sav Filter Domino NT Ports Build3.0.5 Aix Edition

build3.0.5

Symantec Sav Filter Domino NT Ports Build3.0.5 OS 400 Edition

build3.0.5

Symantec Sav Filter For Domino Nt 3.1.1

3.1.1

Symantec Symantec Web Security 3.0.1.59

3.01.59

Symantec Symantec Web Security 3.0.1.60

3.01.60

Symantec Symantec Web Security 3.0.1.61

3.01.61

Symantec Symantec Web Security 3.0.1.62

3.01.62

Symantec Symantec Web Security 3.0.1.63

3.01.63

Symantec Symantec Web Security 3.0.1.67

3.01.67

Symantec Symantec Web Security 3.0.1.68

3.01.68

References

1013133

Third Party Advisory, VDB Entry

VU#107822

Patch, Third Party Advisory, US Government Resource

http://www.symantec.com/avcenter/security/Content/2005.02.08.html

Patch, Vendor Advisory

20050208 Symantec AntiVirus Library Heap Overflow

Patch, Vendor Advisory

upx-engine-gain-control(18869)

VDB Entry

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.