CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2007-1689

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1690%
EPSS Percentile0.99th
Published2007年5月16日
Last Modified2026年4月23日

Vulnerability Description

Buffer overflow in the ISAlertDataCOM ActiveX control in ISLALERT.DLL for Norton Personal Firewall 2004 and Internet Security 2004 allows remote attackers to execute arbitrary code via long arguments to the (1) Get and (2) Set functions.

Affected Platforms (CPE)

📦
Symantec

Norton Internet Security

= 2004
📦
Symantec

Norton Personal Firewall

= 2004

References & Advisories

🔗 http://osvdb.org/36164
🔗 http://secunia.com/advisories/25290
🔗 http://www.kb.cert.org/vuls/id/983953
🔗 http://www.securityfocus.com/archive/1/468779/100/0/threaded
🔗 http://www.securityfocus.com/bid/23936
🔗 http://www.securitytracker.com/id?1018073
🔗 http://www.symantec.com/avcenter/security/Content/2007.05.16.html
🔗 http://www.vupen.com/english/advisories/2007/1843

相關漏洞威脅

CVE-2006-649010.0

Multiple buffer overflows in the SupportSoft (1) SmartIssue (tgctlsi.dll) and (2) ScriptRunner (tgctlsr.dll) ActiveX controls, as ...

CVE-2004-044410.0

Multiple vulnerabilities in SYMDNS.SYS for Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal F...

CVE-2016-36459.8

Integer overflow in the TNEF unpacker in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Da...

CVE-2008-03129.3

Stack-based buffer overflow in the AutoFix Support Tool ActiveX control 2.7.0.1 in SYMADATA.DLL in multiple Symantec Norton produc...