This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Symantec First view 2016-06-30
Product Mail Security For Domino Last view 2017-04-14
Version Type
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:symantec:mail_security_for_domino:8.1.3:*:*:*:*:*:*:* 9
cpe:2.3:a:symantec:mail_security_for_domino:8.0.9:*:*:*:*:*:*:* 9
cpe:2.3:a:symantec:mail_security_for_domino:8.1.2:*:*:*:*:*:*:* 9
cpe:2.3:a:symantec:mail_security_for_domino:8.0:*:*:*:*:*:*:* 9
cpe:2.3:a:symantec:mail_security_for_domino:8.0.1:*:*:*:*:*:*:* 9
cpe:2.3:a:symantec:mail_security_for_domino:8.0.2:*:*:*:*:*:*:* 9
cpe:2.3:a:symantec:mail_security_for_domino:8.0.3:*:*:*:*:*:*:* 9
cpe:2.3:a:symantec:mail_security_for_domino:8.0.5:*:*:*:*:*:*:* 9
cpe:2.3:a:symantec:mail_security_for_domino:8.0.6:*:*:*:*:*:*:* 9
cpe:2.3:a:symantec:mail_security_for_domino:8.0.7:*:*:*:*:*:*:* 9
cpe:2.3:a:symantec:mail_security_for_domino:8.0.8:*:*:*:*:*:*:* 9
cpe:2.3:a:symantec:mail_security_for_domino:8.1:*:*:*:*:*:*:* 7
cpe:2.3:a:symantec:mail_security_for_domino:8.1.1:*:*:*:*:*:*:* 7

Related : CVE

  Date Alert Description
5.5 2017-04-14 CVE-2016-5310

The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows before 12.1.6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1.6 MP6; Symantec Endpoint Protection for Small Business Enterprise (SEP SBE/SEP.Cloud); Symantec Endpoint Protection Cloud (SEPC) for Windows/Mac; Symantec Endpoint Protection Small Business Edition 12.1; CSAPI before 10.0.4 HF02; Symantec Protection Engine (SPE) before 7.0.5 HF02, 7.5.x before 7.5.4 HF02, 7.5.5 before 7.5.5 HF01, and 7.8.x before 7.8.0 HF03; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF2.1, 8.1.x before 8.1.2 HF2.3, and 8.1.3 before 8.1.3 HF2.2; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 6.5.8_3968140 HF2.3, 7.x before 7.0_3966002 HF2.1, and 7.5.x before 7.5_3966008 VHF2.2; Symantec Protection for SharePoint Servers (SPSS) before SPSS_6.0.3_To_6.0.5_HF_2.5 update, 6.0.6 before 6.0.6 HF_2.6, and 6.0.7 before 6.0.7_HF_2.7; Symantec Messaging Gateway (SMG) before 10.6.2; Symantec Messaging Gateway for Service Providers (SMG-SP) before 10.5 patch 260 and 10.6 before patch 259; Symantec Web Gateway; and Symantec Web Security.Cloud allows remote attackers to cause a denial of service (memory corruption) via a crafted RAR file that is mishandled during decompression.

5.5 2017-04-14 CVE-2016-5309

The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows before 12.1.6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1.6 MP6; Symantec Endpoint Protection for Small Business Enterprise (SEP SBE/SEP.Cloud); Symantec Endpoint Protection Cloud (SEPC) for Windows/Mac; Symantec Endpoint Protection Small Business Edition 12.1; CSAPI before 10.0.4 HF02; Symantec Protection Engine (SPE) before 7.0.5 HF02, 7.5.x before 7.5.4 HF02, 7.5.5 before 7.5.5 HF01, and 7.8.x before 7.8.0 HF03; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF2.1, 8.1.x before 8.1.2 HF2.3, and 8.1.3 before 8.1.3 HF2.2; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 6.5.8_3968140 HF2.3, 7.x before 7.0_3966002 HF2.1, and 7.5.x before 7.5_3966008 VHF2.2; Symantec Protection for SharePoint Servers (SPSS) before SPSS_6.0.3_To_6.0.5_HF_2.5 update, 6.0.6 before 6.0.6 HF_2.6, and 6.0.7 before 6.0.7_HF_2.7; Symantec Messaging Gateway (SMG) before 10.6.2; Symantec Messaging Gateway for Service Providers (SMG-SP) before 10.5 patch 260 and 10.6 before patch 259; Symantec Web Gateway; and Symantec Web Security.Cloud allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted RAR file that is mishandled during decompression.

8.4 2016-06-30 CVE-2016-3646

The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation) via a crafted ZIP archive that is mishandled during decompression.

9.8 2016-06-30 CVE-2016-3645

Integer overflow in the TNEF unpacker in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to have an unspecified impact via crafted TNEF data.

8.4 2016-06-30 CVE-2016-3644

The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via modified MIME data in a message.

7.8 2016-06-30 CVE-2016-2211

The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted CAB file that is mishandled during decompression.

7.3 2016-06-30 CVE-2016-2210

Buffer overflow in Dec2LHA.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code via a crafted file.

7.3 2016-06-30 CVE-2016-2209

Buffer overflow in Dec2SS.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code via a crafted file.

8.4 2016-06-30 CVE-2016-2207

The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation) via a crafted RAR file that is mishandled during decompression.

CWE : Common Weakness Enumeration

%idName
44% (4) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
33% (3) CWE-20 Improper Input Validation
11% (1) CWE-189 Numeric Errors
11% (1) CWE-125 Out-of-bounds Read

Snort® IPS/IDS

Date Description
2016-08-02 Symantec TNEF decoder integer overflow attempt
RuleID : 39432 - Type : FILE-OTHER - Revision : 2
2016-08-02 Symantec TNEF decoder integer overflow attempt
RuleID : 39431 - Type : FILE-OTHER - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39428 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39427 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39426 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39425 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39424 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39423 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39422 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39421 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39420 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39419 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39418 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec multiple product Dec2SS PowerPoint file buffer overflow attempt
RuleID : 39417 - Type : FILE-OFFICE - Revision : 2
2016-08-02 Symantec Antivirus ALPkOldFormatDecompressor out of bounds read attempt
RuleID : 39403 - Type : FILE-OTHER - Revision : 3
2016-08-02 Symantec Antivirus ALPkOldFormatDecompressor out of bounds read attempt
RuleID : 39402 - Type : FILE-OTHER - Revision : 4
2016-08-02 Symantec Decomposer Engine Dec2LHA buffer overflow attempt
RuleID : 39401 - Type : SERVER-WEBAPP - Revision : 2
2016-08-02 Symantec Decomposer Engine Dec2LHA buffer overflow attempt
RuleID : 39400 - Type : SERVER-WEBAPP - Revision : 2
2016-08-02 Symantec Norton Antivirus ccScanw.dll Unpack ShortLZ memory corruption attempt
RuleID : 39386 - Type : FILE-OTHER - Revision : 2
2016-08-02 Symantec Norton Antivirus ccScanw.dll Unpack ShortLZ memory corruption attempt
RuleID : 39385 - Type : FILE-OTHER - Revision : 2
2016-08-02 Symantec MIME parser updateheader heap buffer overflow attempt
RuleID : 39380 - Type : SERVER-OTHER - Revision : 6

Nessus® Vulnerability Scanner

id Description
2016-09-26 Name: A security application installed on the remote host is affected by multiple d...
File: symantec_endpoint_prot_client_sym16-015.nasl - Type: ACT_GATHER_INFO
2016-09-22 Name: A messaging security application running on the remote host is affected by mu...
File: symantec_messaging_gateway_sym16-015.nasl - Type: ACT_GATHER_INFO
2016-09-22 Name: A security application installed on the remote host is affected by multiple d...
File: symantec_protection_engine_sym16_015.nasl - Type: ACT_GATHER_INFO
2016-09-22 Name: A security application installed on the remote host is affected by multiple v...
File: symantec_protection_engine_sym16_015_nix.nasl - Type: ACT_GATHER_INFO
2016-09-22 Name: A security application installed on the remote host is affected by multiple d...
File: symantec_protection_sharepoint_servers_sym16_015.nasl - Type: ACT_GATHER_INFO
2016-09-22 Name: A security application installed on the remote host is affected by multiple d...
File: symantec_sms_sym_16-015.nasl - Type: ACT_GATHER_INFO
2016-09-09 Name: A security application installed on the remote host is affected by multiple v...
File: symantec_protection_sharepoint_servers_sym16_010.nasl - Type: ACT_GATHER_INFO
2016-09-07 Name: A security application installed on the remote host is affected by multiple v...
File: symantec_protection_engine_sym16_010.nasl - Type: ACT_GATHER_INFO
2016-09-07 Name: A security application installed on the remote host is affected by multiple v...
File: symantec_protection_engine_sym16_010_nix.nasl - Type: ACT_GATHER_INFO
2016-07-12 Name: A web security application hosted on the remote web server is affected by mul...
File: symantec_web_gateway_sym16-010.nasl - Type: ACT_GATHER_INFO
2016-07-01 Name: The remote Windows host has software installed that is affected by multiple v...
File: symantec_sms_sym_16-010.nasl - Type: ACT_GATHER_INFO
2016-06-30 Name: The version of Symantec Endpoint Protection Client installed on the remote ho...
File: symantec_endpoint_prot_client_sym16-010.nasl - Type: ACT_GATHER_INFO
2016-06-30 Name: A messaging security application running on the remote host is affected by mu...
File: symantec_messaging_gateway_sym16-010.nasl - Type: ACT_GATHER_INFO