Symantec Mail Security For Domino

This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor	Symantec	First view	2016-06-30
Product	Mail Security For Domino	Last view	2017-04-14
Version		Type
Update
Edition
Language
Sofware Edition
Target Software
Target Hardware
Other

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name	Affected CVE
cpe:2.3:a:symantec:mail_security_for_domino:8.1.2:::::::*	9
cpe:2.3:a:symantec:mail_security_for_domino:8.1.3:::::::*	9

Related : CVE

	Date	Alert	Description
5.5	2017-04-14	CVE-2016-5310	The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows before 12.1.6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1.6 MP6; Symantec Endpoint Protection for Small Business Enterprise (SEP SBE/SEP.Cloud); Symantec Endpoint Protection Cloud (SEPC) for Windows/Mac; Symantec Endpoint Protection Small Business Edition 12.1; CSAPI before 10.0.4 HF02; Symantec Protection Engine (SPE) before 7.0.5 HF02, 7.5.x before 7.5.4 HF02, 7.5.5 before 7.5.5 HF01, and 7.8.x before 7.8.0 HF03; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF2.1, 8.1.x before 8.1.2 HF2.3, and 8.1.3 before 8.1.3 HF2.2; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 6.5.8_3968140 HF2.3, 7.x before 7.0_3966002 HF2.1, and 7.5.x before 7.5_3966008 VHF2.2; Symantec Protection for SharePoint Servers (SPSS) before SPSS_6.0.3_To_6.0.5_HF_2.5 update, 6.0.6 before 6.0.6 HF_2.6, and 6.0.7 before 6.0.7_HF_2.7; Symantec Messaging Gateway (SMG) before 10.6.2; Symantec Messaging Gateway for Service Providers (SMG-SP) before 10.5 patch 260 and 10.6 before patch 259; Symantec Web Gateway; and Symantec Web Security.Cloud allows remote attackers to cause a denial of service (memory corruption) via a crafted RAR file that is mishandled during decompression.
5.5	2017-04-14	CVE-2016-5309	The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows before 12.1.6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1.6 MP6; Symantec Endpoint Protection for Small Business Enterprise (SEP SBE/SEP.Cloud); Symantec Endpoint Protection Cloud (SEPC) for Windows/Mac; Symantec Endpoint Protection Small Business Edition 12.1; CSAPI before 10.0.4 HF02; Symantec Protection Engine (SPE) before 7.0.5 HF02, 7.5.x before 7.5.4 HF02, 7.5.5 before 7.5.5 HF01, and 7.8.x before 7.8.0 HF03; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF2.1, 8.1.x before 8.1.2 HF2.3, and 8.1.3 before 8.1.3 HF2.2; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 6.5.8_3968140 HF2.3, 7.x before 7.0_3966002 HF2.1, and 7.5.x before 7.5_3966008 VHF2.2; Symantec Protection for SharePoint Servers (SPSS) before SPSS_6.0.3_To_6.0.5_HF_2.5 update, 6.0.6 before 6.0.6 HF_2.6, and 6.0.7 before 6.0.7_HF_2.7; Symantec Messaging Gateway (SMG) before 10.6.2; Symantec Messaging Gateway for Service Providers (SMG-SP) before 10.5 patch 260 and 10.6 before patch 259; Symantec Web Gateway; and Symantec Web Security.Cloud allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted RAR file that is mishandled during decompression.
8.4	2016-06-30	CVE-2016-3646	The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation) via a crafted ZIP archive that is mishandled during decompression.
9.8	2016-06-30	CVE-2016-3645	Integer overflow in the TNEF unpacker in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to have an unspecified impact via crafted TNEF data.
8.4	2016-06-30	CVE-2016-3644	The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via modified MIME data in a message.
7.8	2016-06-30	CVE-2016-2211	The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted CAB file that is mishandled during decompression.
7.3	2016-06-30	CVE-2016-2210	Buffer overflow in Dec2LHA.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code via a crafted file.
7.3	2016-06-30	CVE-2016-2209	Buffer overflow in Dec2SS.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code via a crafted file.
8.4	2016-06-30	CVE-2016-2207	The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation) via a crafted RAR file that is mishandled during decompression.

CWE : Common Weakness Enumeration

%	id	Name
33% (3)	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer
33% (3)	CWE-20	Improper Input Validation
11% (1)	CWE-787	Out-of-bounds Write
11% (1)	CWE-189	Numeric Errors
11% (1)	CWE-125	Out-of-bounds Read

Snort® IPS/IDS

Date	Description
2016-08-02	Symantec TNEF decoder integer overflow attempt RuleID : 39432 - Type : FILE-OTHER - Revision : 2
2016-08-02	Symantec TNEF decoder integer overflow attempt RuleID : 39431 - Type : FILE-OTHER - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39428 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39427 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39426 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39425 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39424 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39423 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39422 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39421 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39420 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39419 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39418 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt RuleID : 39417 - Type : FILE-OFFICE - Revision : 2
2016-08-02	Symantec Antivirus ALPkOldFormatDecompressor out of bounds read attempt RuleID : 39403 - Type : FILE-OTHER - Revision : 3
2016-08-02	Symantec Antivirus ALPkOldFormatDecompressor out of bounds read attempt RuleID : 39402 - Type : FILE-OTHER - Revision : 4
2016-08-02	Symantec Decomposer Engine Dec2LHA buffer overflow attempt RuleID : 39401 - Type : SERVER-WEBAPP - Revision : 2
2016-08-02	Symantec Decomposer Engine Dec2LHA buffer overflow attempt RuleID : 39400 - Type : SERVER-WEBAPP - Revision : 2
2016-08-02	Symantec Norton Antivirus ccScanw.dll Unpack ShortLZ memory corruption attempt RuleID : 39386 - Type : FILE-OTHER - Revision : 2
2016-08-02	Symantec Norton Antivirus ccScanw.dll Unpack ShortLZ memory corruption attempt RuleID : 39385 - Type : FILE-OTHER - Revision : 2
2016-08-02	Symantec MIME parser updateheader heap buffer overflow attempt RuleID : 39380 - Type : SERVER-OTHER - Revision : 6

Nessus® Vulnerability Scanner

id	Description
2016-09-26	Name: A security application installed on the remote host is affected by multiple d... File: symantec_endpoint_prot_client_sym16-015.nasl - Type: ACT_GATHER_INFO
2016-09-22	Name: A messaging security application running on the remote host is affected by mu... File: symantec_messaging_gateway_sym16-015.nasl - Type: ACT_GATHER_INFO
2016-09-22	Name: A security application installed on the remote host is affected by multiple d... File: symantec_protection_engine_sym16_015.nasl - Type: ACT_GATHER_INFO
2016-09-22	Name: A security application installed on the remote host is affected by multiple v... File: symantec_protection_engine_sym16_015_nix.nasl - Type: ACT_GATHER_INFO
2016-09-22	Name: A security application installed on the remote host is affected by multiple d... File: symantec_protection_sharepoint_servers_sym16_015.nasl - Type: ACT_GATHER_INFO
2016-09-22	Name: A security application installed on the remote host is affected by multiple d... File: symantec_sms_sym_16-015.nasl - Type: ACT_GATHER_INFO
2016-09-09	Name: A security application installed on the remote host is affected by multiple v... File: symantec_protection_sharepoint_servers_sym16_010.nasl - Type: ACT_GATHER_INFO
2016-09-07	Name: A security application installed on the remote host is affected by multiple v... File: symantec_protection_engine_sym16_010.nasl - Type: ACT_GATHER_INFO
2016-09-07	Name: A security application installed on the remote host is affected by multiple v... File: symantec_protection_engine_sym16_010_nix.nasl - Type: ACT_GATHER_INFO
2016-07-12	Name: A web security application hosted on the remote web server is affected by mul... File: symantec_web_gateway_sym16-010.nasl - Type: ACT_GATHER_INFO
2016-07-01	Name: The remote Windows host has software installed that is affected by multiple v... File: symantec_sms_sym_16-010.nasl - Type: ACT_GATHER_INFO
2016-06-30	Name: The version of Symantec Endpoint Protection Client installed on the remote ho... File: symantec_endpoint_prot_client_sym16-010.nasl - Type: ACT_GATHER_INFO
2016-06-30	Name: A messaging security application running on the remote host is affected by mu... File: symantec_messaging_gateway_sym16-010.nasl - Type: ACT_GATHER_INFO

Mapping	Total
CVE ID(s)	9
CWE ID(s)	5
Snort® Rule(s)	21
Nessus® Exploit(s)	13

	%	Affected CVE
Critical (9-10)	11.11%	1
High (7-8.9)	66.67%	6
Medium (4-6.9)	22.22%	2
Low (0.1-3.9)	0%	0
Pending... (0)	0%	0

Symantec Mail Security For Domino

Summary

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

Related : CVE

CWE : Common Weakness Enumeration

Snort® IPS/IDS

Nessus® Vulnerability Scanner

vDNA Monitoring

Global informations

Risk Rating (CVSS)

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU

	no vDNA Monitoring
Monitor this product now !