CVE-2007-0447

EPSS 10.84%
Published 05.10.2007 21:17:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote attackers to execute arbitrary code via multiple crafted CAB archives.

Affected products Warnungen 0 Metrics 2 CWE 1 References 9

Data is provided by the National Vulnerability Database (NVD)

Symantec ≫ Antivirus Scan Engine Version4.0

Symantec ≫ Antivirus Scan Engine Version4.0 Editionclearswift

Symantec ≫ Antivirus Scan Engine Version4.1

Symantec ≫ Antivirus Scan Engine Version4.1.8

Symantec ≫ Antivirus Scan Engine Version4.3

Symantec ≫ Antivirus Scan Engine Version4.3 Editioncaching

Symantec ≫ Antivirus Scan Engine Version4.3 Editionclearswift

Symantec ≫ Antivirus Scan Engine Version4.3 Editionmicrosoft_sharepoint

Symantec ≫ Antivirus Scan Engine Version4.3 Editionnetwork_attached_storage

Symantec ≫ Antivirus Scan Engine Version4.3.3

Symantec ≫ Antivirus Scan Engine Version4.3.7.27

Symantec ≫ Antivirus Scan Engine Version4.3.8.29

Symantec ≫ Antivirus Scan Engine Version4.3.12

Symantec ≫ Antivirus Scan Engine Version4.3.12 Editioncaching

Symantec ≫ Antivirus Scan Engine Version4.3.12 Editionclearswift

Symantec ≫ Antivirus Scan Engine Version4.3.12 Editionmessaging

Symantec ≫ Antivirus Scan Engine Version4.3.12 Editionmicrosoft_sharepoint

Symantec ≫ Antivirus Scan Engine Version4.3.12 Editionnetwork_attached_storage

Symantec ≫ Antivirus Scan Engine Version5.0

Symantec ≫ Antivirus Scan Engine Version5.0.1

Symantec ≫ Brightmail Antispam Version4.0

Symantec ≫ Brightmail Antispam Version5.5

Symantec ≫ Brightmail Antispam Version6.0

Symantec ≫ Brightmail Antispam Version6.0.1

Symantec ≫ Brightmail Antispam Version6.0.2

Symantec ≫ Brightmail Antispam Version6.0.3

Symantec ≫ Brightmail Antispam Version6.0.4

Symantec ≫ Client Security Version2.0

Symantec ≫ Client Security Version2.0 Editionscf_7.1

Symantec ≫ Client Security Version2.0 Updatebuild_9.0.0.338 Editionstm

Symantec ≫ Client Security Version2.0.1_build_9.0.1.1000 Updatemr1

Symantec ≫ Client Security Version2.0.2_build_9.0.2.1000 Updatemr2

Symantec ≫ Client Security Version2.0.3_build_9.0.3.1000 Updatemr3

Symantec ≫ Client Security Version2.0.4

Symantec ≫ Client Security Version2.0.4 Updatemr4_build1000

Symantec ≫ Client Security Version2.0.5_build_1100_mp1 Updatemr5

Symantec ≫ Client Security Version2.0.6 Updatemr6

Symantec ≫ Client Security Version3.0

Symantec ≫ Client Security Version3.0.0.359

Symantec ≫ Client Security Version3.0.1.1000

Symantec ≫ Client Security Version3.0.1.1001

Symantec ≫ Client Security Version3.0.1.1007

Symantec ≫ Client Security Version3.0.1.1008

Symantec ≫ Client Security Version3.0.2.2000

Symantec ≫ Client Security Version3.0.2.2001

Symantec ≫ Client Security Version3.0.2.2002

Symantec ≫ Client Security Version3.0.2.2010

Symantec ≫ Client Security Version3.0.2.2011

Symantec ≫ Client Security Version3.0.2.2020

Symantec ≫ Client Security Version3.0.2.2021

Symantec ≫ Client Security Version3.1

Symantec ≫ Client Security Version3.1.394

Symantec ≫ Client Security Version3.1.396

Symantec ≫ Client Security Version3.1.400

Symantec ≫ Client Security Version3.1.401

Symantec ≫ Mail Security Version4.0 Editiondomino

Symantec ≫ Mail Security Version4.0 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.0 Updatebuild456 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.0 Updatebuild463 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.0 Updatebuild465 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.0 Updatebuild736 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.0 Updatebuild741 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.0 Updatebuild743 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.0.1 Editiondomino

Symantec ≫ Mail Security Version4.1 Updatebuild458 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.1 Updatebuild459 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.1 Updatebuild461 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.5 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.5.4.743 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.5_build_719 Editionexchange

Symantec ≫ Mail Security Version4.5_build_736 Editionexchange

Symantec ≫ Mail Security Version4.5_build_741 Editionexchange

Symantec ≫ Mail Security Version4.6.1.107 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.6.3 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version4.6_build_97 Editionexchange

Symantec ≫ Mail Security Version5.0 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version5.0 Editionsmtp

Symantec ≫ Mail Security Version5.0.0.204 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version5.0.1 Editionsmtp

Symantec ≫ Mail Security Version5.1.0 Editiondomino

Symantec ≫ Mail Security Version6.0.0 Editionmicrosoft_exchange

Symantec ≫ Norton Antivirus Editioncorporate_edition_for_linux

Symantec ≫ Norton Antivirus Version9.0 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version9.0 Editionmacintosh

Symantec ≫ Norton Antivirus Version9.0.0 Editionmacintosh

Symantec ≫ Norton Antivirus Version9.0.0.338 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version9.0.1 Editionmacintosh

Symantec ≫ Norton Antivirus Version9.0.1.1.1000 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version9.0.2 Editionmacintosh

Symantec ≫ Norton Antivirus Version9.0.2.1000 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version9.0.3 Editionmacintosh

Symantec ≫ Norton Antivirus Version9.0.3.1000 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version9.0.4 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version9.0.4 Updatemr4_build_1000 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version9.0.5 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version9.0.5.1100 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version9.0.6.1000 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0 Editionmacintosh

Symantec ≫ Norton Antivirus Version10.0.0 Editionmacintosh

Symantec ≫ Norton Antivirus Version10.0.0.359 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0.1 Editionmacintosh

Symantec ≫ Norton Antivirus Version10.0.1.1000 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0.1.1007 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0.1.1008 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0.2.2000 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0.2.2001 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0.2.2002 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0.2.2010 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0.2.2011 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0.2.2020 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.0.2.2021 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.1 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.1.4 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.1.4 Updatemr4_mp1_build4010 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.1.4.4010 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.1.394 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.1.396 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.1.400 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.1.401 Editioncorporate_edition

Symantec ≫ Norton Antivirus Version10.9.1 Editionmacintosh

Symantec ≫ Norton Antivirus Version2004

Symantec ≫ Norton Antivirus Version2004 Editionprofessional

Symantec ≫ Norton Antivirus Version2005

Symantec ≫ Norton Antivirus Version2005 Editionprofessional

Symantec ≫ Norton Antivirus Version2005 Update11.0

Symantec ≫ Norton Antivirus Version2005 Update11.0.9

Symantec ≫ Norton Antivirus Version2006

Symantec ≫ Norton Internet Security Version3.0 Editionmacintosh

Symantec ≫ Norton Internet Security Version2004

Symantec ≫ Norton Internet Security Version2004 Editionprofessional

Symantec ≫ Norton Internet Security Version2005

Symantec ≫ Norton Internet Security Version2005 Editionprofessional

Symantec ≫ Norton Internet Security Version2005 Update11.0

Symantec ≫ Norton Internet Security Version2005 Update11.0.9

Symantec ≫ Norton Internet Security Version2005 Update11.5.6.14

Symantec ≫ Norton Internet Security Version2006

Symantec ≫ Norton Internet Security Version2006 Editionprofessional

Symantec ≫ Norton Personal Firewall Version2006

Symantec ≫ Norton Personal Firewall Version2006_9.1.0.33

Symantec ≫ Norton Personal Firewall Version2006_9.1.1.7

Symantec ≫ Norton System Works Version3.0 Editionmacintosh

Symantec ≫ Norton System Works Version2004

Symantec ≫ Norton System Works Version2005

Symantec ≫ Norton System Works Version2005 Editionpremier

Symantec ≫ Norton System Works Version2005 Update11.0

Symantec ≫ Norton System Works Version2005 Update11.0.9

Symantec ≫ Norton System Works Version2006

Symantec ≫ Web Security Version2.5

Symantec ≫ Web Security Version3.0

Symantec ≫ Web Security Version3.0.1

Symantec ≫ Web Security Version3.0.1.70

Symantec ≫ Web Security Version3.0.1.76

Symantec ≫ Web Security Version3.0.1_build_3.01.70

Symantec ≫ Web Security Version3.0.1_build_3.01.72

Symantec ≫ Web Security Version3.0.1_build_3.01.74

Symantec ≫ Web Security Version3.01.59

Symantec ≫ Web Security Version3.01.60

Symantec ≫ Web Security Version3.01.61

Symantec ≫ Web Security Version3.01.62

Symantec ≫ Web Security Version3.01.63

Symantec ≫ Web Security Version3.01.67

Symantec ≫ Web Security Version3.01.68

Symantec ≫ Web Security Version5.0 Editionmicrosoft_isa_2004

Symantec ≫ Gateway Security 5000 Series Version3.0.1

Symantec ≫ Gateway Security 5400 Version2.0.1

Symantec ≫ Mail Security 8820 Appliance

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	10.84%	0.927

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://osvdb.org/36118

http://secunia.com/advisories/26053

Vendor Advisory

http://securityresponse.symantec.com/avcenter/security/Content/2007.07.11f.html

Patch

http://www.securityfocus.com/bid/24282

http://www.vupen.com/english/advisories/2007/2508

http://www.zerodayinitiative.com/advisories/ZDI-07-040.html

https://nvd.nist.gov/vuln/detail/CVE-2007-0447

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-0447

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-0447

EUVD