Symantec Mail Security Attachment Parsing Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 9 Apr 2008 5278 Views

RISK: Medium Risk

Medium Risk

Multiple vulnerabilities have been identifed in Symantec Mail Security for SMTP, Symantec Mail Security for Domino and Symantec Mail Security for Exchange, which can be exploited by malicious people to compromise a vulnerable system.

The vulnerabilities are caused due to various errors within the third-party Folio Flat File reader (foliosr.dll) and Applix Graphics reader (kpagrdr.dll) and can be exploited to cause buffer overflows when a specially crafted file is checked.

Successful exploitation allows execution of arbitrary code, but requires that e.g. a policy is setup for scanning the contents of messages.

Impact

  • Remote Code Execution

System / Technologies affected

  • Symantec Mail Security for SMTP 5.x
  • Symantec Mail Security for Domino 7.x
  • Symantec Mail Security for Microsoft Exchange 5.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Symantec Mail Security for SMTP 5.x
    - Update to version 5.0.1 with Patch 189.
  • Symantec Mail Security for Domino 7.x
    - Disable scanning of message content.
  • Symantec Mail Security for Microsoft Exchange 5.x
    - Disable scanning of message content.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Microsoft Windows GDI Overflow Vulnerability( 09 April 2008 )

9 Apr 2008 5052 Views

Next

Microsoft Windows VBScript/JScript Remote Code Execution Vulnerability( 09 April 2008 )

9 Apr 2008 5103 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY