PT-2007-3146 · Symantec+1 · Symantec Mail Security For Smtp+2

Published

2007-06-27

Updated

2018-10-16

CVE-2007-1792

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: Symantec Mail Security for SMTP versions prior to 5.0.1 Patch 181 Symantec Mail Security Appliance versions prior to 5.0.0-36

Description: The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a crafted executable attachment in an e-mail. This involves the detection of specific packers, including PE-Shield v0.2 and ASPack v1.00-1.08.02.

Recommendations: For Symantec Mail Security for SMTP versions prior to 5.0.1 Patch 181, update to version 5.0.1 Patch 181 or later. For Symantec Mail Security Appliance versions prior to 5.0.0-36, update to version 5.0.0-36 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-1792

Affected Products

Aspack

Symantec Mail Security Appliance

Symantec Mail Security For Smtp

PT-2007-3146 · Symantec+1 · Symantec Mail Security For Smtp+2

CVE-2007-1792

Related Identifiers

Affected Products

References · 10