Intrusion Prevention

Symantec.Intel.Alert.Originator.Service.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in Symantec Alert Originator Service component shipped with Symantec Client Security software.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted packet. It allows a remote attacker to execute arbitrary code.

Affected Products

Symantec AntiVirus Corporate Edition version 9.0 MR6 and prior
Symantec AntiVirus Corporate Edition version 10.0 (all versions)
Symantec AntiVirus Corporate Edition version 10.1 MR7 and prior
Symantec AntiVirus Corporate Edition version 10.2 MR1 and prior

Impact

System Compromise

CVE References

CVE-2009-1430