CVE-2010-2305

Buffer overflow in an ActiveX control in SSHelper.dll for Symantec Sygate Personal Firewall 5.6 build 2808 allows remote attackers to execute arbitrary code via a long third argument to the SetRegString method.
Configurations

Configuration 1 (hide)

cpe:2.3:a:symantec:sygate_personal_firewall:5.6:*:*:*:*:*:*:*

History

21 Nov 2024, 01:16

Type Values Removed Values Added
References () http://osvdb.org/65539 - () http://osvdb.org/65539 -
References () http://www.corelan.be:8800/index.php/forum/security-advisories/10-050-sygate-personal-firewall-5-6-build-2808-activex/ - Exploit () http://www.corelan.be:8800/index.php/forum/security-advisories/10-050-sygate-personal-firewall-5-6-build-2808-activex/ - Exploit
References () http://www.exploit-db.com/exploits/13834 - Exploit () http://www.exploit-db.com/exploits/13834 - Exploit
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/59408 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/59408 -

Information

Published : 2010-06-16 20:30

Updated : 2025-04-11 00:51


NVD link : CVE-2010-2305

Mitre link : CVE-2010-2305

CVE.ORG link : CVE-2010-2305


JSON object : View

Products Affected

symantec

  • sygate_personal_firewall
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer