1. /
  2. Security Response/
  3. Security Updates Detail

Symantec Enterprise Security Manager - Network Assessment Security Updates 34.01

April 18, 2008

Description

Description

This update for Symantec ESM Network Assessment detects and reports seven additional vulnerabilities.
Use the LiveUpdate feature of Symantec ESM Network Assessment to download this security update.

Vulnerability

Bugtraq ID Vulnerability Name
28553Microsoft Windows DNS Client Service Response Spoofing Vulnerability
28570Microsoft Windows GDI Stack Overflow Vulnerability
28571Microsoft Windows GDI 'CreateDIBPatternBrushPt' Function Heap Overflow Vulnerability
28551Microsoft VBScript and JScript Scripting Engines Remote Code Execution Vulnerability
28606Microsoft 'hxvz.dll' ActiveX Control Memory Corruption Vulnerability
28552Microsoft Internet Explorer Data Stream Handling Remote Code Execution Vulnerability
28554Microsoft Windows Kernel Usermode Callback Local Privilege Escalation Vulnerability
* Signature names may have been updated to comply with an updated IPS Signature naming convention. See http://www.symantec.com/business/support/index?page=content&id=TECH152794&key=54619&actp=LIST for more information.
Last modified on: April 18, 2008
Security Response Blog
The State of Spam