QwikSec

Security Database

CVE

CWE

Training

CVE-2010-0107

Published: Feb 23, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

Buffer overflow in an ActiveX control (SYMLTCOM.dll) in Symantec N360 1.0 and 2.0; Norton Internet Security, AntiVirus, SystemWorks, and Confidential 2006 through 2008; and Symantec Client Security 3.0.x before 3.1 MR9, and 3.1.x before MR9; allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors. NOTE: this is only a vulnerability if the attacker can "masquerade as an authorized site."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_OSVDB

20100224 VUPEN Security Research - Symantec Products "SYMLTCOM.dll" Buffer Overflow Vulnerability

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_SECTRACK

third-party-advisory

x_refsource_SECUNIA

symantec-symltcom-activex-bo(56357)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_SECTRACK

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100217_01

x_refsource_CONFIRM

vdb-entry

x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.