Norton Personal Firewall ISAlertDataCOM ActiveX Control Buffer Overflow
Secunia Advisory: SA25290Release Date: 2007-05-17
Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch
Software: Symantec Norton Internet Security 2004
Symantec Norton Internet Security 2004 Professional
Symantec Norton Personal Firewall 2004
CVE reference: CVE-2007-1689
Description:
Will Dorman has reported a vulnerability in Norton Personal Firewall, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a boundary error in the ISAlertDataCOM ActiveX control (ISLAlert.dll) when handling the "Set()" and "Get()" methods. This can be exploited to cause a stack-based buffer overflow via an overly long argument.
Successful exploitation allows execution of arbitrary code.
Solution:
Product updates to correct the problem are available through LiveUpdate.
Provided and/or discovered by:
Will Dormann, CERT/CC.
Original Advisory:
Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2007.05.16.html
US-CERT VU#983953: http://www.kb.cert.org/vuls/id/983953
Labels: Vulnerability
<< Home