WelcomeEnterpriseSmall BusinessHome & Home OfficePartnersAbout Symantec
October 11, 2006
Symantec Network Security 7100 Series / 4.0 Security Update 59


Run the LiveUpdate feature of Symantec Network Security to install the latest Engine Updates and Security Updates.

For information on LiveUpdate, see the Administration Guide: [ 7100 Series | 4.0 ]

Security Update 59 adds coverage for the following vulnerabilities and threats:

  • Oracle SUBSCRIPTION_NAME SQL Injection
  • Oracle OBJECT_TYPE SQL Injection
  • SMB Server Transaction Name BO
  • HTTP BBSee Activity
  • HTTP Director Download Activity
  • HTTP DollarRevenue Download Activity
  • HTTP Excel Multiple Remote Code Exec (2)
  • HTTP Ezula Activity
  • HTTP Firefox DOM Override Code Execution
  • HTTP Firefox SVG Mem Corrupt Code Exec
  • HTTP FIZZLE Config Request
  • HTTP IEHlpr CCNNLC Update Activity
  • HTTP IEHlpr Info Download Activity
  • HTTP IEHlpr Register Activity
  • HTTP IEHlpr SmartAllyes Update Activity
  • HTTP ImageMagick SGI Heap BO
  • HTTP MessStopper Activity
  • HTTP SmartDove Download Request
  • HTTP SystemProcess Activity
  • HTTP Umaxsearch Activity
  • HTTP Webprefix Activity
  • HTTP WKS Lotus 1-2-3 Remote Code Exec

Security Update 59 provides updated coverage for the following vulnerabilities and threats:

  • Windows Media Player BMP Heap Overflow
  • HTTP Quadro Data Transfer
  • HTTP QuickSearch Activity
  • ShopNav Uploading Registration Info
  • SpyBot Spy Commands
  • Starware Update Activity
  • SurfSideKick Installation Activity
  • BookedSpace Downloading Files
  • HTTP Clearsearch InstallFiles Request
  • CoolWebSearch Activity
  • HTTP Embed Tag NPDSPlay DLL BO
  • FTP Generic Command Overflow
  • GAIN New Code Info Request
  • GAIN Reporting Typed URL
  • HTTP AdDestroyer Activity
  • HTTP AltaVista DirTraversal
  • HTTP AOL Server Default Login
  • HTTP Apropos Installation Activity
  • BetterInternet Information Upload
  • HTTP CGI Cmd Exec IkonBoard
  • HTTP WebCalendar File Disclosure
  • HTTP Dealhelper Downloading Data
  • HTTP Delfin Activity
  • Delfin Definition File Request
  • HTTP DirectAnim ComObj CodeExec (CLSID)
  • E2Give InstallFile Request
  • EasyWWW Installation File Request
  • Euniverse FlowGoBar Config Request
  • Euniverse Thunderdownload Activity
  • Euniverse Thunderdownload Installation
  • Ezula Upgrade & Version Check
  • HTTP Hylafax Faxsurvey Remote PW Access
  • HTTP CGI Glimpse Request
  • Hotbar PopUp Ads Request
  • HTTP htdig File Path Disclosure
  • HTTP MS IIS SQL Hit Disclosure
  • Instafinder Requesting Configuration
  • HTTP MS Media ActiveX Ctrl File Enum
  • HTTP MovieMaker ComObj CodeExec (PROGID)
  • HTTP MS IE VML Fill Method BO
  • HTTP Novell CGI Convert Request
  • HTTP CGI NPH Request
  • HTTP Etheni File Include
  • 180Solutions Requesting Keywords
  • HTTP Tomcat ServletPath Info Disclosure
  • TopMoxie Requesting Build Files
  • Topmoxie Recoding Downloads & Offers
  • HTTP IRIX webdist CGI Cmd Exec
  • HTTP WebViewFolderIcon SetSlice BO
  • WhenU Installation Activity
  • WhenU Update Events
  • HTTP Windupdate Mediapass Install
  • HTTP ICC Profile TagData Overflow
  • HTTP IEDriver Popup Activity
  • ISTBar Configuration Request
  • ISTBar Fav Menu Porn Site Request
  • MS Excel XLW 4.0 Workbook Code Execution
  • HTTP MS Windows GDI+ JPEG Overflow
  • MS PnP QueryResConflist BO

Return to main Symantec Network Security page

Initial Post on: Wednesday, 11-Oct-06 14:20:00
Last modified on: Wednesday, 11-Oct-06 14:37:00