Description
Buffer overflow in the ISAlertDataCOM ActiveX control in ISLALERT.DLL for Norton Personal Firewall 2004 and Internet Security 2004 allows remote attackers to execute arbitrary code via long arguments to the (1) Get and (2) Set functions.
Affected products
- Symantec / norton_internet_security2004 – 2004
- Symantec / norton_personal_firewall2004 – 2004
References
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2007/1843
- MISChttp://www.symantec.com/avcenter/security/Content/2007.05.16.html
- MISChttp://www.securityfocus.com/bid/23936
- MISChttp://osvdb.org/36164
- MISChttp://www.securitytracker.com/id?1018073
- VENDOR_ADVISORYhttp://secunia.com/advisories/25290
- MISChttp://www.kb.cert.org/vuls/id/983953
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/34328
- MISChttp://www.securityfocus.com/archive/1/468779/100/0/threaded