How to Buy
This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.
The remote Windows host has an antivirus application that is affected
by a code execution vulnerability.
The version of Symantec Endpoint Protection or Symantec Scan Engine
installed on the remote Windows host is potentially affected by a code
execution vulnerability. The legacy decomposer engine fails to
properly handle bounds-checking when parsing files from some versions
of CAB archives.
See also :
For Symantec AntiVirus 10.x, upgrade to Symantec Enpoint Protection
12.1 or later.
For Symantec Enpoint Protection 11.x or 12.0, either run Live Update
to upgrade the decomposer engine to version 188.8.131.52 or upgrade to
Symantec Endpoint Proection 12.1 or later.
For Symantec Scan Engine, upgrade to Symantec Scan Engine 5.2.8 or
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 6.9
Public Exploit Available : false
Nessus Plugin ID: 62925 ()
Bugtraq ID: 56399
CVE ID: CVE-2012-4953
Get Nessus Professional to scan unlimited IPs, run compliance checks & more
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.