Alias(es)Symantec.Firewall.NBNS.Response.Stack.Overflow, Symantec.Firewall.NBNS.Response.Heap.Overflow |
Release DateAug 13, 2005 |
Severitycritical |
ImpactSystem compromise: remote code execution.Denial of Service. |
DescriptionThis indicates an attempt to exploit a buffer overflow vulnerability in Symantec Client Firewall.The vulnerability is a result of the software's failure to properly parse NetBIOS Name Service responses. An attacker can crash the firewall by sending malicious NetBIOS responses to it, causing a Denial of Service condition. It may also be possible to execute arbitrary code on the system. |
Affected ProductsThe following products and earier versions are vulnerable:Symantec Norton Personal Firewall 2004 Symantec Client Security 1.1 Symantec Client Firewall 5.1.1 Symantec Norton Internet Security 2004 Professional Edition |
Recommended ActionsApply the appropriate patch from the vendor or upgrade to a non-vulnerable version if available. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2004-0444 |
Reference/shttp://www.securityfocus.com/bid/10333 (BugTraq)http://www.securityfocus.com/bid/10334 (BugTraq) http://www.securityfocus.com/bid/10335 (BugTraq) |
