OSVDB ID: 36164

Title: Symantec Norton Personal Firewall ISAlertDataCOM ActiveX (ISLALERT.DLL) Multiple Argument Overflow

Info

Disclosure

May 16, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Multiple buffer overflows exist in Norton Personal Firewall. The ISAlertDataCOM ActiveX control fails to validate data passed to the Get() and Set() functions resulting in a stack overflow. With a specially crafted website, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access, Local / Remote, Context Dependent
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public
Disclosure: Vendor Verified, Vendor Verified, Coordinated Disclosure
OSVDB: Web Related, Security Software

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Symantec has released a patch to address this vulnerability.

Products

Symantec Corporation	Norton Internet Security	2004
Symantec Corporation	Norton Personal Firewall	2004

References

Security Tracker: 1018073
CVE ID: 2007-1689 (see also: NVD)
Bugtraq ID: 23936
Secunia Advisory ID: 25290
ISS X-Force ID: 34328
Metasploit ID: 36164
CERT VU: 983953
VUPEN Advisory: ADV-2007-1843
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-05/0257.html
Vendor Specific Advisory URL: http://www.symantec.com/avcenter/security/Content/2007.05.16.html

Credit

Will Dormann - -

Direct URL: http://osvdb.org/36164

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Symantec Corporation

Norton Internet Security

Norton Personal Firewall

References

Credit