Intrusion Prevention

Symantec.AntiVirus.Engine.CAB.Parsing.Heap.Overflow

Description

This indicates a possible exploit of a buffer overflow vulnerability in Symantec's AntiVirus Engine.
The specific flaw can be exploited during the process of scanning multiple maliciously formatted CAB archives.

Affected Products

Symantec AntiVirus Engine.

Impact

Denial of service.

Recommended Actions

Symantec has issued an update to correct this vulnerability:
http://www.symantec.com/avcenter/security/Content/2007.07.11f.html

CVE References

CVE-2007-0447

Other References

ZDI-07-040