#VU62 Stack-based buffer overflow in Broadcom products - CVE-2016-2209

Vulnerability identifier: #VU62

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:P/U:Amber

CVE-ID: CVE-2016-2209

CWE-ID: CWE-319

Exploitation vector: Remote access

Exploit availability: Public exploit is available

Vulnerable software:
Symantec Scan Engine
Symantec Protection Engine (SPE)
Symantec Data Center Security:Server (SDCS:S)
Symantec Protection for SharePoint Servers (SPSS)
Symantec Endpoint Protection
Symantec Mail Security for Domino (SMSDOM)
Symantec Mail Security for Microsoft Exchange (SMSMSE)

Software vendor:
Broadcom

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to boundary error when parsing a maliciously-formed PowerPoint PPT file. A remote unauthenticated attacker can cause stacked-based buffer overflow by sending a specially crafted file to vulnerable server.

Successful exploitation of this vulnerability may result in in arbitrary code execution.

Updates to resolve these issues can be installed using product update functionality. Users of Symantec Endpoint Protection (SEP), Symantec Protection Engine (SPE), Symantec Protection for SharePoint Servers (SPSS), Symantec Mail Security for Microsoft Exchange (SMSMSE) and Symantec Mail Security for Domino (SMSDOM) should apply custom patches. For more information, please refer to vendors advisory, specified in External links section.

• https://bugs.chromium.org/p/project-zero/issues/detail?id=823&q=label%3AVendor-Symantec