← Back

CVE-2005-2758

nvd nist
Published: Oct 5, 2005Modified: Apr 16, 2026

JSON object

Loading...
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD

Description

Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote attackers to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow.

Affected (10)

Symantec
2 products
Antivirus Scan Engine
Antivirus Scan Engine For Network Attached Storage
Configuration A
10 vulnerable
Vulnerable SoftwareAffected Versions
Symantec
Antivirus Scan Engine
Version 4.0
Antivirus Scan Engine
Version 4.0
Antivirus Scan Engine
Version 4.0
Antivirus Scan Engine
Version 4.0
Antivirus Scan Engine
Version 4.0
Antivirus Scan Engine
Version 4.3
Antivirus Scan Engine
Version 4.3
Antivirus Scan Engine
Version 4.3
Antivirus Scan Engine
Version 4.3
Antivirus Scan Engine For Network Attached Storage
Version 4.3

References (20)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
US Government Resource
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.