The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Symantec AV, SGS, WS, Norton AV, IS, PF: vulnerabilities of RAR and CAB

Synthesis of the vulnerability 

Two vulnerabilities of Symantec and Norton products lead to a denial of service or to code execution.
Vulnerable systems: Norton Antivirus Plus, Norton Internet Security, Raptor Firewall, Symantec AV, SEF, SGS, SWS.
Severity of this threat: 3/4.
Number of vulnerabilities in this bulletin: 2.
Creation date: 12/07/2007.
Revision date: 13/07/2007.
Références of this weakness: BID-24282, CVE-2007-0447, CVE-2007-3699, CVE-2007-3801-REJECT, SYM07-019, VIGILANCE-VUL-7004, ZDI-07-039, ZDI-07-040.

Description of the vulnerability 

Two vulnerabilities of Symantec and Norton products are related to RAR or CAB files analysis.

An attacker can modify the PACK_SIZE field of RAR file header in order to create an infinite loop when file is parsed. [severity:3/4; CVE-2007-3699, CVE-2007-3801-REJECT, ZDI-07-039]

A malicious CAB archive can create an overflow leading to code execution. [severity:3/4; CVE-2007-0447, ZDI-07-040]
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This computer vulnerability impacts software or systems such as Norton Antivirus Plus, Norton Internet Security, Raptor Firewall, Symantec AV, SEF, SGS, SWS.

Our Vigil@nce team determined that the severity of this weakness bulletin is important.

The trust level is of type confirmed by the editor, with an origin of document.

This bulletin is about 2 vulnerabilities.

An attacker with a expert ability can exploit this weakness.

Solutions for this threat 

Symantec AV, SGS, WS, Norton AV, IS, PF: corrected versions for RAR and CAB.
Corrected versions are indicated in Symantec's document.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides a computer security alert. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.