WelcomeEnterpriseSmall BusinessHome & Home OfficePartnersAbout Symantec
September 7, 2005
Symantec Network Security 7100 Series / 4.0 Security Update 26


Run the LiveUpdate feature of Symantec Network Security to install the latest Engine Updates and Security Updates.

For information on LiveUpdate, see the Administration Guide: [ 7100 Series | 4.0 ]

Security Update 26 adds coverage for the following vulnerabilities and threats:

  • AWSTATS LoadPlugin Command Exec
  • AWSTATS Logfile Command Exec
  • AWSTATS Plugin Command Execution
  • Brightstor Agent Stack Overflow
  • CA Brightstor Uniagent BO
  • CITADEL UX Remote Buffer Overflow
  • Enterasys Vertical Horizon Backdoor Acct
  • HTTP Athena Web Registration Cmd Exec.
  • HTTP CSVForm Shell Escape
  • HTTP EzMeeting Buffer Overfow
  • HTTP Firefox Unauth Clipboard Disc
  • HTTP IIS CPHost.dll Dir. Recursion Bypass
  • HTTP iPlanet Force Auth Brute Force
  • HTTP iPlanet HTML REND DoS
  • HTTP IRIX handler CGI Command Exec
  • HTTP Lastlines.cgi Dir. Recursion
  • HTTP Lastlines.cgi Remote Code Exec
  • HTTP MS Media Player File Attr Corrupt.
  • HTTP MS OWC Local File Disclosure
  • HTTP Nombas ScriptEase Dir. Recursion
  • HTTP Remote File Include (@Lex)
  • HTTP Remote File Include (Blackboard)
  • HTTP Remote File Include (OCPortal)
  • HTTP Remote File Include (Pivot)
  • HTTP WikkiTikkiTavi Remote File Include
  • HTTP Windows Shell Object Instantiation
  • IMAP Cyrus MagicPlus BO
  • IMAP Extremail Format String Vul
  • Mantis Remote Script Execution
  • Medal of Honor Allied Assault BO
  • Microsoft IIS SERVER_NAME Source Disclosure
  • Microsoft SQL Server 7.0 Remote DoS
  • MS IE COM Object Misuse
  • MS IE HTML Object Tag Local Zone Bypass
  • MySQL MaxDB HTTP GET Buffer Overflow
  • Oracle 8i TNS Buffer Overflow
  • Oracle 9i Webcache File Corruption
  • Oracle iSQLPlus File Access
  • Shoutcast Remote Format String
  • SMTP Extremail Format String
  • SMTP Kinesphere Buffer Overflow
  • SoftEther VPN Software
  • Telnet Client env_opt_add Heap BO
  • Trackercam Directory Traversal
  • TrackerCam LongURI BO
  • TracketCam Negative Content Length DOS
  • Veritas NetBackup Invalid Timestamp BO
  • XDesign SIPD Format String Vul

Security Update 26 provides updated coverage for the following vulnerabilities and threats:

  • Gaobot Autostart and Service Commands
  • Gaobot DDOS commands
  • Gaobot Generic Bot Commands
  • Gaobot Variable Config Commands
  • MSIE msdds.dll Code Exec (HTTP)
  • Phatbot OS Shutdown Commands
  • Phatbot Process Control Commands
  • Phatbot Scan Commands
  • R(X)BOT Add Advanced-Scan Commands
  • R(X)BOT Advanced-Scan Commands
  • R(X)BOT Bot Scan Commands

Return to main Symantec Network Security page

Initial Post on: Wednesday, 07-Sep-05 15:15:00
Last modified on: Wednesday, 07-Sep-05 15:26:51