======================================================================
Secunia Research 08/04/2008
- Symantec Mail Security Applix Graphics Parsing Vulnerabilities -
======================================================================
Table of Contents
Affected Software....................................................1
======================================================================
Secunia Research 08/04/2008
- Symantec Mail Security Folio Flat File Parsing Buffer Overflows -
======================================================================
Table of Contents
Affected Software....................................................1
information, visit the URL referenced below.
http://www.autonomy.com/
KeyView is used by many commercial products to handle various types of
file formats. Lotus Notes and Symantec Mail Security are two examples
of such products.
II. DESCRIPTION
Remote exploitation of an integer overflow vulnerability in Autonomy's
Discovered by : Thierry Zoller (G-SEC)
Affected products :
~~~~~~~~~~~~~~~~~~~
- Symantec Mail Security for Domino
- Symantec Mail Security for Microsoft Exchange
- Symantec Mail Security for SMTP
- Symantec Brightmail Gateway
- Symantec AntiVirus for Network Attached Storage
- Symantec AntiVirus for Caching
examined.
The privileges that an attacker gains may be different for each
application that uses the KeyView SDK. For example, exploiting this
issue via Lotus Notes yields the current user's privileges while
exploiting the vulnerability via Symantec Mail Security yields SYSTEM
privileges.
IV. DETECTION
iDefense confirmed the existence of this vulnerability using the
