CyberSec.Space Logo
Back to CVE Browser

CVE-2007-1689

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1690%
EPSS Percentile0.99th
PublishedMay 16, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Buffer overflow in the ISAlertDataCOM ActiveX control in ISLALERT.DLL for Norton Personal Firewall 2004 and Internet Security 2004 allows remote attackers to execute arbitrary code via long arguments to the (1) Get and (2) Set functions.

Affected Platforms (CPE)

πŸ“¦
Symantec

Norton Internet Security

= 2004
πŸ“¦
Symantec

Norton Personal Firewall

= 2004

References & Advisories

πŸ”— http://osvdb.org/36164
πŸ”— http://secunia.com/advisories/25290
πŸ”— http://www.kb.cert.org/vuls/id/983953
πŸ”— http://www.securityfocus.com/archive/1/468779/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/23936
πŸ”— http://www.securitytracker.com/id?1018073
πŸ”— http://www.symantec.com/avcenter/security/Content/2007.05.16.html
πŸ”— http://www.vupen.com/english/advisories/2007/1843

Related Vulnerabilities

CVE-2006-649010.0

Multiple buffer overflows in the SupportSoft (1) SmartIssue (tgctlsi.dll) and (2) ScriptRunner (tgctlsr.dll) ActiveX controls, as ...

CVE-2004-044410.0

Multiple vulnerabilities in SYMDNS.SYS for Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal F...

CVE-2016-36459.8

Integer overflow in the TNEF unpacker in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Da...

CVE-2008-03129.3

Stack-based buffer overflow in the AutoFix Support Tool ActiveX control 2.7.0.1 in SYMADATA.DLL in multiple Symantec Norton produc...