1. /
  2. Security Response/
  3. Security Updates Detail

Symantec Enterprise Security Manager - Network Assessment Security Updates 33.02

March 21, 2008

Description

Description

This update for Symantec ESM Network Assessment detects and reports two additional vulnerabilities.
Use the LiveUpdate feature of Symantec ESM Network Assessment to download this security update.

Vulnerability

Bugtraq ID Vulnerability Name
27638Microsoft Windows Active Directory LDAP Request Validation Remote Denial Of Service Vulnerability
27101Microsoft IIS File Change Notification Local Privilege Escalation Vulnerability
27676Microsoft Internet Information Services ASP Remote Code Execution Vulnerability
27670Microsoft Windows WebDAV Mini-Redirector Heap Overflow Vulnerability
27661Microsoft Object Linking and Embedding (OLE) Automation Heap Based Buffer Overflow Vulnerability
25571Microsoft Visual FoxPro FPOLE.OCX ActiveX Control Buffer Overflow Vulnerability
25977Microsoft Visual FoxPro FPOLE.OCX ActiveX Control Arbitrary Command Execution Vulnerability
27668Microsoft Internet Explorer HTML Rendering Remote Memory Corruption Vulnerability
27689Microsoft Internet Explorer Argument Handling Memory Corruption Vulnerability
* Signature names may have been updated to comply with an updated IPS Signature naming convention. See http://www.symantec.com/business/support/index?page=content&id=TECH152794&key=54619&actp=LIST for more information.
Last modified on: March 21, 2008
Security Response Blog
The State of Spam