[SECURITY-L] Symantec Norton AntiVirus 2002 Buffer Overflow Vulnerability

Silvana Mieko Misuta mieko em ccuec.unicamp.br
Ter Fev 25 08:46:22 -03 2003 

      Subject: Symantec Norton AntiVirus 2002 Buffer Overflow
Vulnerability
          Date: Fri, 21 Feb 2003 22:46:55 -0300 (ART)
         From: Caio Souza <caio_sm em yahoo.com.br>
             To: mieko em ccuec.unicamp.br


                To: BugTraq
         Subject: [SNS Advisory No.61] Symantec Norton AntiVirus 2002
Buffer Overflow
                      Vulnerability
             Date: Feb 19 2003 5:00AM
          Author: snsadv em lac.co.jp <snsadv em lac.co.jp>
 Message-ID: <20030219135621.B7E1.SNSADV em lac.co.jp>



 [Moderator note: This post was withheld, with permission from SNS, to
ensure that
                  the issue was resolved completely. ]

 ----------------------------------------------------------------------
 SNS Advisory No.61
 Symantec Norton AntiVirus 2002 Buffer Overflow Vulnerability

 Problem first discovered: Thu, 26 Dec 2002
 Published: Wed, 19 Feb 2003
 Reference: http://www.lac.co.jp/security/english/snsadv_e/61_e.html
 ----------------------------------------------------------------------

 Overview:
 ---------
   The e-mail scanning function in Symantec Norton AntiVirus 2002 may
cause
   a Buffer Overflow.

 Problem Description:
 --------------------
   The e-mail scanning function in Symantec Norton AntiVirus 2002 will
cause
   a Buffer Overflow when it receives an e-mail message with a
compressed file
   which includes a file with an unusually long filename.

   An attacker could exploit this problem to execute arbitrary code with
the
   privilege of the currently logged on user.


 Tested Versions:
 ----------------
   Symantec Norton AntiVirus 2002 (version 8.07.17C)

 Tested OS:
 ----------
   Windows 2000 Professional Japanese Edition + Windows 2000 Service
Pack 3

 Solution:
 ---------
   Update AntiVirus 2002 by using LiveUpdate.

 Discovered by:
 --------------
   ARAI Yuu y.arai em lac.co.jp

 Acknowledgements:
 -----------------
   Thanks to:
   Symantec Security Response

 Disclaimer:
 -----------
   All information in these advisories are subject to change without any

   advanced notices neither mutual consensus, and each of them is
released
   as it is. LAC Co.,Ltd. is not responsible for any risks of
occurrences
   caused by applying those information.

 ------------------------------------------------------------------
 Secure Net Service(SNS) Security Advisory <snsadv em lac.co.jp>
 Computer Security Laboratory, LAC  http://www.lac.co.jp/security/






                   Want to link to this message? Use this URL:
                <http://www.securityfocus.com/archive/1/312419>

                       Disclaimer, Terms & Conditions


                             Privacy Statement
                    Copyright © 1999-2003 SecurityFocus

Mais detalhes sobre a lista de discussão SECURITY-L