Main
Vulnerability Database
Exploits
ID:362 - Exploit for Stack-based buffer overflow in Broadcom products - CVE-2016-2209
ID:362 - Exploit for Stack-based buffer overflow in Broadcom products - CVE-2016-2209
Published: March 18, 2020
Vulnerability identifier: #VU62
Vulnerability risk: High
CVE-ID: CVE-2016-2209
CWE-ID: CWE-319
Exploitation vector: Remote access
Vulnerable software:
Symantec Scan Engine
Symantec Data Center Security:Server (SDCS:S)
Symantec Endpoint Protection
Symantec Protection Engine (SPE)
Symantec Protection for SharePoint Servers (SPSS)
Symantec Mail Security for Domino (SMSDOM)
Symantec Mail Security for Microsoft Exchange (SMSMSE)
Symantec Scan Engine
Symantec Data Center Security:Server (SDCS:S)
Symantec Endpoint Protection
Symantec Protection Engine (SPE)
Symantec Protection for SharePoint Servers (SPSS)
Symantec Mail Security for Domino (SMSDOM)
Symantec Mail Security for Microsoft Exchange (SMSMSE)
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error when parsing a maliciously-formed PowerPoint PPT file. A remote unauthenticated attacker can cause stacked-based buffer overflow by sending a specially crafted file to vulnerable server.
Successful exploitation of this vulnerability may result in in arbitrary code execution.
The vulnerability exists due to boundary error when parsing a maliciously-formed PowerPoint PPT file. A remote unauthenticated attacker can cause stacked-based buffer overflow by sending a specially crafted file to vulnerable server.
Successful exploitation of this vulnerability may result in in arbitrary code execution.
Remediation
Updates to resolve these issues can be installed using product update functionality. Users of Symantec Endpoint Protection (SEP), Symantec Protection Engine (SPE), Symantec Protection for SharePoint Servers (SPSS), Symantec Mail Security for Microsoft Exchange (SMSMSE) and Symantec Mail Security for Domino (SMSDOM) should apply custom patches. For more information, please refer to vendors advisory, specified in External links section.