← Back

CVE-2007-0447

nvd nist
Published: Oct 5, 2007Modified: Apr 23, 2026

JSON object

Loading...
9.3
Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 8.6 / Impact: 10.0
Source: NVD

Description

Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote attackers to execute arbitrary code via multiple crafted CAB archives.

Affected (168)

Symantec
13 products
Antivirus Scan Engine
Brightmail Antispam
Client Security
Mail Security
Norton Antivirus
Norton Internet Security
Norton Personal Firewall
Norton System Works
Symantec Antivirus Filtering +for Domino
Web Security
Gateway Security 5000 Series
Gateway Security 5400
Mail Security 8820 Appliance
Configuration A
165 vulnerable
Vulnerable SoftwareAffected Versions
Symantec
Antivirus Scan Engine
Version 4.0
Antivirus Scan Engine
Version 4.0
Antivirus Scan Engine
Version 4.1.8
Antivirus Scan Engine
Version 4.1
Antivirus Scan Engine
Version 4.3.12
Antivirus Scan Engine
Version 4.3.12
Antivirus Scan Engine
Version 4.3.12
Antivirus Scan Engine
Version 4.3.12
Antivirus Scan Engine
Version 4.3.12
Antivirus Scan Engine
Version 4.3.12
Antivirus Scan Engine
Version 4.3.3
Antivirus Scan Engine
Version 4.3.7.27
Antivirus Scan Engine
Version 4.3.8.29
Antivirus Scan Engine
Version 4.3
Antivirus Scan Engine
Version 4.3
Antivirus Scan Engine
Version 4.3
Antivirus Scan Engine
Version 4.3
Antivirus Scan Engine
Version 4.3
Antivirus Scan Engine
Version 5.0.1
Antivirus Scan Engine
Version 5.0
Symantec
Brightmail Antispam
Version 4.0
Brightmail Antispam
Version 5.5
Brightmail Antispam
Version 6.0.1
Brightmail Antispam
Version 6.0.2
Brightmail Antispam
Version 6.0.3
Brightmail Antispam
Version 6.0.4
Brightmail Antispam
Version 6.0
Symantec
Client Security
Version 2.0.1_build_9.0.1.1000 mr1
Client Security
Version 2.0.2_build_9.0.2.1000 mr2
Client Security
Version 2.0.3_build_9.0.3.1000 mr3
Client Security
Version 2.0.4
Client Security
Version 2.0.4 mr4_build1000
Client Security
Version 2.0.5_build_1100_mp1 mr5
Client Security
Version 2.0.6 mr6
Client Security
Version 2.0
Client Security
Version 2.0
Client Security
Version 2.0 build_9.0.0.338
Client Security
Version 3.0.0.359
Client Security
Version 3.0.1.1000
Client Security
Version 3.0.1.1001
Client Security
Version 3.0.1.1007
Client Security
Version 3.0.1.1008
Client Security
Version 3.0.2.2000
Client Security
Version 3.0.2.2001
Client Security
Version 3.0.2.2002
Client Security
Version 3.0.2.2010
Client Security
Version 3.0.2.2011
Client Security
Version 3.0.2.2020
Client Security
Version 3.0.2.2021
Client Security
Version 3.0
Client Security
Version 3.1.394
Client Security
Version 3.1.396
Client Security
Version 3.1.400
Client Security
Version 3.1.401
Client Security
Version 3.1
Symantec
Mail Security
Version 4.0.1
Mail Security
Version 4.0
Mail Security
Version 4.0
Mail Security
Version 4.0 build456
Mail Security
Version 4.0 build463
Mail Security
Version 4.0 build465
Mail Security
Version 4.0 build736
Mail Security
Version 4.0 build741
Mail Security
Version 4.0 build743
Mail Security
Version 4.1 build458
Mail Security
Version 4.1 build459
Mail Security
Version 4.1 build461
Mail Security
Version 4.5.4.743
Mail Security
Version 4.5
Mail Security
Version 4.5_build_719
Mail Security
Version 4.5_build_736
Mail Security
Version 4.5_build_741
Mail Security
Version 4.6.1.107
Mail Security
Version 4.6.3
Mail Security
Version 4.6_build_97
Mail Security
Version 5.0.0.204
Mail Security
Version 5.0.1
Mail Security
Version 5.0
Mail Security
Version 5.0
Mail Security
Version 5.1.0
Mail Security
Version 6.0.0
Symantec
Norton Antivirus
All versions
Norton Antivirus
Version 10.0.0.359
Norton Antivirus
Version 10.0.0
Norton Antivirus
Version 10.0.1.1000
Norton Antivirus
Version 10.0.1.1007
Norton Antivirus
Version 10.0.1.1008
Norton Antivirus
Version 10.0.1
Norton Antivirus
Version 10.0.2.2000
Norton Antivirus
Version 10.0.2.2001
Norton Antivirus
Version 10.0.2.2002
Norton Antivirus
Version 10.0.2.2010
Norton Antivirus
Version 10.0.2.2011
Norton Antivirus
Version 10.0.2.2020
Norton Antivirus
Version 10.0.2.2021
Norton Antivirus
Version 10.0
Norton Antivirus
Version 10.0
Norton Antivirus
Version 10.1.394
Norton Antivirus
Version 10.1.396
Norton Antivirus
Version 10.1.4.4010
Norton Antivirus
Version 10.1.400
Norton Antivirus
Version 10.1.401
Norton Antivirus
Version 10.1.4
Norton Antivirus
Version 10.1.4 mr4_mp1_build4010
Norton Antivirus
Version 10.1
Norton Antivirus
Version 10.9.1
Norton Antivirus
Version 2004
Norton Antivirus
Version 2004
Norton Antivirus
Version 2005
Norton Antivirus
Version 2005
Norton Antivirus
Version 2005 11.0.9
Norton Antivirus
Version 2005 11.0
Norton Antivirus
Version 2006
Norton Antivirus
Version 9.0.0.338
Norton Antivirus
Version 9.0.0
Norton Antivirus
Version 9.0.1.1.1000
Norton Antivirus
Version 9.0.1
Norton Antivirus
Version 9.0.2.1000
Norton Antivirus
Version 9.0.2
Norton Antivirus
Version 9.0.3.1000
Norton Antivirus
Version 9.0.3
Norton Antivirus
Version 9.0.4
Norton Antivirus
Version 9.0.4 mr4_build_1000
Norton Antivirus
Version 9.0.5.1100
Norton Antivirus
Version 9.0.5
Norton Antivirus
Version 9.0.6.1000
Norton Antivirus
Version 9.0
Norton Antivirus
Version 9.0
Symantec
Norton Internet Security
Version 2004
Norton Internet Security
Version 2004
Norton Internet Security
Version 2005
Norton Internet Security
Version 2005
Norton Internet Security
Version 2005 11.0.9
Norton Internet Security
Version 2005 11.0
Norton Internet Security
Version 2005 11.5.6.14
Norton Internet Security
Version 2006
Norton Internet Security
Version 2006
Norton Internet Security
Version 3.0
Symantec
Norton Personal Firewall
Version 2006
Norton Personal Firewall
Version 2006_9.1.0.33
Norton Personal Firewall
Version 2006_9.1.1.7
Symantec
Norton System Works
Version 2004
Norton System Works
Version 2005
Norton System Works
Version 2005
Norton System Works
Version 2005 11.0.9
Norton System Works
Version 2005 11.0
Norton System Works
Version 2006
Norton System Works
Version 3.0
Symantec Antivirus Filtering +for Domino
Version 3.0.12
Symantec
Web Security
Version 2.5
Web Security
Version 3.0.1.70
Web Security
Version 3.0.1.76
Web Security
Version 3.0.1
Web Security
Version 3.0.1_build_3.01.70
Web Security
Version 3.0.1_build_3.01.72
Web Security
Version 3.0.1_build_3.01.74
Web Security
Version 3.01.59
Web Security
Version 3.01.60
Web Security
Version 3.01.61
Web Security
Version 3.01.62
Web Security
Version 3.01.63
Web Security
Version 3.01.67
Web Security
Version 3.01.68
Web Security
Version 3.0
Web Security
Version 5.0
Configuration B
3 vulnerable
Vulnerable SoftwareAffected Versions
Gateway Security 5000 Series
Version 3.0.1
Gateway Security 5400
Version 2.0.1
Mail Security 8820 Appliance
All versions

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (12)

Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Patch
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.