This script is Copyright (C) 2016 Tenable Network Security, Inc.
An antivirus application installed on the remote host is affected by a
remote code execution vulnerability.
The version of Symantec Antivirus Engine (AVE) installed on the remote
host is 20126.96.36.199. It is, therefore, affected by a remote code
execution vulnerability due to improper parsing of malformed
portable-executable (PE) header files and executables packed with
early versions of Aspack. A remote attacker can exploit this by
convincing a user to download and scan a document or application
containing specially crafted PE header files, resulting in the
execution of arbitrary code.
See also :
Upgrade to Symantec Antivirus Engine 20188.8.131.52 or later.
Risk factor :
High / CVSS Base Score : 8.8
CVSS Temporal Score : 6.9
Public Exploit Available : true