CVE-2005-1346

Name of the Vulnerable Software and Affected Versions: Symantec AntiVirus products, including: Norton AntiVirus version 11.0.0 Web Security version 3.0.1.72 Mail Security for SMTP version 4.0.5.66 AntiVirus Scan Engine version 4.3.7.27 SAV/Filter for Domino NT version 3.1.1.87 Mail Security for Exchange version 4.5.4.743

Description: The issue allows remote attackers to cause a denial of service, resulting in a component crash, and avoid detection by using a crafted RAR file.

Recommendations: For Norton AntiVirus version 11.0.0, update to a version that is not affected by this issue. For Web Security version 3.0.1.72, update to a version that is not affected by this issue. For Mail Security for SMTP version 4.0.5.66, update to a version that is not affected by this issue. For AntiVirus Scan Engine version 4.3.7.27, update to a version that is not affected by this issue. For SAV/Filter for Domino NT version 3.1.1.87, update to a version that is not affected by this issue. For Mail Security for Exchange version 4.5.4.743, update to a version that is not affected by this issue. As a temporary workaround, consider restricting the handling of RAR files until a patch is available.