WelcomeEnterpriseSmall BusinessHome & Home OfficePartnersAbout Symantec
October 4, 2005
Symantec Network Security 7100 Series / 4.0 Security Update 28

Description

Run the LiveUpdate feature of Symantec Network Security to install the latest Engine Updates and Security Updates.

For information on LiveUpdate, see the Administration Guide: [ 7100 Series | 4.0 ]

Security Update 28 adds coverage for the following vulnerabilities and threats:

  • GTP SymbOS DoomBoot A
  • GTP SymbOS DoomBoot B
  • GTP SymbOS DoomBoot D
  • GTP SymbOS DoomBoot E
  • HTTP EasyDynamicPages Config File Incl.
  • HTTP K-COLLECT csv_db.cgi Cmd. Exec
  • HTTP PHPMyFAQ Directory Traversal
  • HTTP PHPMyFAQ Log Access
  • HTTP WebAPP apage.cgi Cmd. Exec.
  • SQLDict Brute Force Password Tool Usage

Security Update 28 provides updated coverage for the following vulnerabilities and threats:

  • BD BugBear Web
  • Darwin MS DOS Device Name DOS
  • FTP AIX Remote BO
  • HTTP Firefox Unauth Clipboard Disc
  • HTTP ION CGI Dir. Traversal
  • HTTP MSIE DHTML Edit Ctrl Attack
  • HTTP Negative Content Length
  • ICC Profile TagData Overflow
  • ISO-SP AB Parameter Is Not User Data
  • ISO-SP DN Parameter Is Not User Data
  • ISO-SP DT Parameter Is Not User Data
  • ISO-SP FN Parameter Is Not User Data
  • ISO-SP Invalid CN Parameter Code
  • ISO-SP Invalid Service Code
  • ISO-SP Oversized CN Parameter
  • ISO-TP0 Invalid TPDU User Data Size
  • ISO-TP0 Oversized Transport Selector ID
  • ISO-TP0 Unknown Transport Code
  • mIRC Nickname Buffer Overflow
  • MS IE COM Object Misuse (1)
  • MS Media Player ActiveX Ctrl File Enum
  • MS PnP QueryResConflist BO
  • MSSQL Failed Login Attempt
  • RFC1006 Invalid Vers/Res Fld Value (A)
  • RFC1006 Invalid Vers/Res Fld Value (B)
  • Shoutcast Remote Format String

Return to main Symantec Network Security page


Initial Post on: Tuesday, 04-Oct-05 15:40:00
Last modified on: Tuesday, 04-Oct-05 15:46:28