WelcomeEnterpriseSmall BusinessHome & Home OfficePartnersAbout Symantec
August 4, 2005
Symantec Network Security 7100 Series / 4.0 Security Update 22

Description

Run the LiveUpdate feature of Symantec Network Security to install the latest Engine Updates and Security Updates.

For information on LiveUpdate, see the Administration Guide: [ 7100 Series | 4.0 ]

Security Update 22 adds coverage for the following vulnerabilities and threats:

  • AWStats Remote Command Exec
  • CFEngine Authentication Heap Overflow
  • Google Desktop Search Remote XSS
  • Google Toolbar About.HTML HTML Injection
  • HTTP Cobalt RAQ Service.cgi BO
  • HTTP Oracle 9IAS PL/SQL Directory Trav.
  • HTTP ORACLE 9IAS PLSQL BO
  • HTTP Oracle SOAP Default Config Vuln
  • HTTP Phorum Stats Request
  • HTTP Remote File Include Mambo
  • HTTP Remote File Include PMachine
  • HTTP Smuggle Content Len Encoding
  • HTTP Smuggle Content Length
  • HTTP Smuggle Get Content Length
  • HTTP Smuggle IIS Content Len
  • HTTP vBulletin PHP misc.php Code Exec
  • HTTP XSTAT PHPInfo Disclosure
  • IE File Download Security Warn Bypass
  • MS IE Local Resource Enumeration
  • MS IE Sysimage File Detection
  • NGIRCD Format String Vulnerability
  • Novell Imap Literal Count Overflow
  • TCP MODBUS - Clear Ctrs & Diag Registers
  • TCP MODBUS - Force Listen Only Mode
  • TCP MODBUS - Illegal Packet Size
  • TCP MODBUS - Read Device Identification
  • TCP MODBUS - Report Server Information
  • TCP MODBUS - Restart Communications Opt.
  • TCP MODBUS - Unauthorized Read Request
  • TCP MODBUS - Unauthorized Write Request

Security Update 22 provides updated coverage for the following vulnerabilities and threats:

  • 180Solutions Configuration Event
  • 180Solutions Requesting Action URL
  • 180Solutions Requesting Ads
  • 180Solutions Requesting Keywords
  • 180Solutions Tracking Events
  • ActiveSearch Search Activity
  • AOL Instant Messenger AwayMsg BO
  • Backdoor C.I.A
  • BadBlue Directory Traversal
  • Binet Information Upload
  • Binet Installation Activity
  • Cross Reference Linux Directory Traversal
  • Cydoor Media Files Request
  • Cyrus IMAPD Pre-login BO
  • Darwin MS DOS Device Name DOS
  • Delfin Activity
  • Delfin Ads Request
  • Delfin Definition File Request
  • Euniverse Flowgo Ping Request
  • Euniverse FlowGoBar Config Request
  • Euniverse KeenValue Info Transfer
  • Euniverse Keenvalue PopUp Request
  • Euniverse Thunderdownload Activity
  • Euniverse Thunderdownload Installation
  • Ezula Upgrade & Version Check
  • Finger Server Pipe Vulnerability
  • FTP CreateDirectory BO (2)
  • FTP Pathname Glob BufferOverflow
  • Gator Communication
  • Gator New Code Info Request
  • Gator Reporting Typed URL
  • Gator Reporting Typed URL (2)
  • Gator Website Visit Data Request
  • GTP (U) V1 Short Invalid TCP Option
  • GTP (U) Ver1 Long Invalid TCP Option
  • GTP Ver1 Long Tunneling Over GTP
  • GTP Ver1 Short Tunneling Over GTP
  • GTP Ver1(C) Invalid Spare Field 1
  • GTP Ver1(U) Invalid Spare Field 1
  • Hotbar Info Transfer For PopUp Ads
  • Hotbar Installation & Upgrade Activity
  • Hotbar PopUp Ads Request
  • Hotbar Reports Activity
  • Hotbar Temp & Toolbar Disp Activity
  • Hotbar Updates Activity
  • HP JetAdmin Information Disclosure
  • HTML WinHelp Item Buffer Overflow
  • HTTP A1Stats CGI Dir Traversal
  • HTTP Abe Timmerman zml.cgi File Disc.
  • HTTP AlienForm Directory Traversal
  • HTTP Anacondaclip Directory Traversal
  • HTTP Annex Ping CGI DoS
  • HTTP ANS PL CGI Dir. Traversal
  • HTTP AOL Server Default Login
  • HTTP Apache php.exe File Disclosure
  • HTTP Apache ServStatus Info Disclosure
  • HTTP Armada Traversal
  • HTTP AtomicBoard Dir Traversal
  • HTTP Auktion CGI Dir. Traversal
  • HTTP BB Hist CGI Dir. Traversal
  • HTTP BB HostSvc Dir. Traversal
  • HTTP Bytes shopper.cgi Dir. Traversal
  • HTTP Cart32 Remote Admin PW
  • HTTP CDomainFree Rte File Exec.
  • HTTP CGI Cmd Exec IkonBoard
  • HTTP CGI Count Buffer Overflow
  • HTTP CGI Rec. Mailreader nph-mr.cgi
  • HTTP CGIForum Dir. Traversal
  • HTTP Crystal Rpts Form Viewer Traversal
  • HTTP DirectoryPro Directory Traversal
  • HTTP Home Free Dir Traversal
  • HTTP Hyperseek 2000 Dir. Traversal
  • HTTP iCat carbo.dll Dir. Traversal
  • HTTP idq.dll Directory Traversal
  • HTTP IE Object Type Validation
  • HTTP IIS CMDExecution Access (2)
  • HTTP IIS IDC STM HTR Request BO
  • HTTP IIS ISAPI Extension (Code Red)
  • HTTP IIS ISAPI Printer BO
  • HTTP IIS WebDAV PROPFIND Overflow
  • HTTP IIS Welchia WebDAV SEARCH BO (2)
  • HTTP Interactive Story Dir Traversal
  • HTTP ION CGI Dir. Traversal
  • HTTP iPlanet Directory Traversal
  • HTTP IRIX Pfdispaly.cgi Cmd Exec.
  • HTTP iXmail CGI Dir. Traversal
  • HTTP JRun CGI Directory Traversal
  • HTTP JRun Root Directory Disclosure
  • HTTP Kebi Academy Directory Traversal
  • HTTP Macromedia JRun Dotcfm File Disc.
  • HTTP MartinHamilton File Disclosure
  • HTTP MDAC Component Query BO
  • HTTP MDaemon GET Request BO
  • HTTP Mercur BO
  • HTTP MetaIP MetaInfo Traversal
  • HTTP Microburst uStorekeeper Cmd Exec
  • HTTP MRTG Directory Traversal
  • HTTP MS BizTalk DTA RemoteExec
  • HTTP MS FrontPage SmartHTML DoS
  • HTTP MS IFRAME JOB Share Redirect
  • HTTP MS IIS ASP DataSuffix Request
  • HTTP MS IIS SQL Hit Disclosure
  • HTTP MS JET DB Buffer Overflow
  • HTTP MS Site Server Default Account
  • HTTP MSIE CHM Cross-Domain Redirect
  • HTTP MSIE Help CTRL Local Zone Bypass
  • HTTP MSIE Object Tag Overflow
  • HTTP MSIIS Chunk Encoding Heap Overflow
  • HTTP MSIIS W3Who ISAPI BO
  • HTTP NewAtlanta File Disclosure
  • HTTP NNTP XPAT Cmd Query Overflow
  • HTTP Oracle9i Default Config Info Disc.
  • HTTP PHP CGI Overflow
  • HTTP Pi3Web Buffer Overflow
  • HTTP Remote File Include 4nAlbum
  • HTTP Remote File Include Informix
  • HTTP Remote SQL Injection issProtect
  • HTTP Remote SQL Injection iXmail
  • HTTP SendTemp Dir. Traversal
  • HTTP SGI InfoSearch fname Exec
  • HTTP SGLMerchant Dir. Traversal
  • HTTP SilverPlatter WebSPIRS File Disc.
  • HTTP Six WebBoard File Disclosure
  • HTTP SMTP NTLM ASN1 Buffer Overflow
  • HTTP Sojourn Directory Traversal
  • HTTP TalentSoft WebPlus Dir. Traversal
  • HTTP Technote Parameter File Disclosure
  • HTTP texis.exe Information Disclosure
  • HTTP Thinking Arts Dir Traversal
  • HTTP Webdav Delete BO
  • HTTP WebDAV MSXML Attribute DoS
  • HTTP Webfroot Shoutbox Dir. Traversal
  • HTTP WebSpeed Admin Utility Access
  • HTTP web_store.cgi Dir. Traversal
  • HTTP Wordit Logbook.pl Cmd Exec
  • HTTP YaBB Arbitrary File Read
  • HTTP Zentrack index.php Info Disc.
  • ICC Profile TagData Overflow
  • ICQ Guestbook DoS Long Name
  • IRC DCC Private Message Chat Cmd
  • IRC Notice Command
  • IRC Notice DCC Chat Command
  • IRC Notice DCC Send Command
  • IRC Private Message DCC Send Cmd
  • ISTBar Configuration Request
  • Kazaa File Request
  • Marketscore Config Request
  • Microsoft Word HyperlinkExt BO
  • MS DHCP Serv Logging DoS
  • MS Exchange XEXCH50 BO
  • MS IE Malformed IFRAME/EMBED BO
  • MS IE Mouse Event Hijacking
  • MS JET DB Engine DSN Hack
  • MS Media Services Overflow
  • MS Rating File Buffer Overflow
  • MS Shell File Download Ext. Misrep.
  • MS Visual Studio RAD Support BO
  • MS Windows Backdoor cmd Shell Access
  • MS Windows GDI+ JPEG Overflow (HTTP)
  • MSFTP IIS Status DoS
  • MSIE File DragDrop Embed Code
  • MSIE FTP Proto Handler Local File Disc
  • MXTarget Information Upload
  • MyWay Buttons Request
  • MyWay Configuration Request
  • NetDevil Backdoor 1.5
  • NetOptimizer Agent Upload
  • OS X Apple File Print Remote BO
  • OS X Help Remote Code Execution
  • P2P Blubster Download Setup
  • PHP Projekt Remote File Inclusion
  • PHP Rocket Add-in Directory Traversal
  • PHP WindBoard Remote File Include
  • PHPBB Cash Admin Remote File Include
  • SLMail VRFY and EXPN Buffer Overflow
  • SMTP Domino Mail Loop DoS
  • SMTP Domino SMTP ENVID BO
  • SMTP HELO Command BO
  • TinyProxy Heap Overflow
  • Topmoxie Recoding Downloads & Offers
  • TopMoxie Requesting Build Files
  • Typo3 Translations.PHP File Disclosure
  • UDP Ascend Reboot DoS
  • UnivWash IMAPD LSUB BO
  • VNC Login Failed
  • VNC Login Success
  • W32 Beagle B Worm Backdoor
  • Way-Board File Disclosure
  • WhenU ClockSync WeatherCast Activity
  • WhenU Installation Activity
  • WhenU Request For Offers
  • WhenU SearchBar Sidefinder Activity
  • WhenU Update Events
  • Whisker/Libwhisker Scan (2)
  • Windows Sharepoint Svc Spoofing
  • WorldSpan Res Manager Malformed DoS
  • Xtramail Multiple DoS

Return to main Symantec Network Security page


Initial Post on: Thursday, 04-Aug-05 12:20:00
Last modified on: Thursday, 04-Aug-05 12:27:07