製品・ソフトウェアに関する情報
Vulnerability Search
複数の Symantec 製品の圧縮解凍エンジンの Dec2LHA.dll におけるバッファオーバーフローの脆弱性
Title 複数の Symantec 製品の圧縮解凍エンジンの Dec2LHA.dll におけるバッファオーバーフローの脆弱性
Summary

複数の Symantec 製品の圧縮解凍エンジンの Dec2LHA.dll には、バッファオーバーフローの脆弱性が存在します。

Possible impacts 第三者により、巧妙に細工されたファイルを介して、任意のコードを実行される可能性があります。
Solution

ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date June 28, 2016, midnight
Registration Date July 7, 2016, 5:15 p.m.
Last Update July 7, 2016, 5:15 p.m.
CVSS3.0 : 重要
Score 7.3
Vector CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
CVSS2.0 : 危険
Score 9
Vector AV:N/AC:L/Au:N/C:P/I:P/A:C
Affected System
シマンテック
Advanced Threat Protection (ATP) 2.0.3 およびそれ以前
CSAPI 10.0.4 およびそれ以前
Email Security Server .Cloud (ESS)
Norton 360 NGC 22.7 未満のすべて
Norton AntiVirus NGC 22.7 未満のすべて
Norton Bootable Removal Tool (NBRT) 2016.1 未満のすべて
Norton Internet Security NGC 22.7 未満のすべて
Norton Power Eraser (NPE) 5.1 未満のすべて
Norton Product Family NGC 22.7 未満のすべて
Norton Security for Mac 13.0.2 未満のすべて
Norton Security NGC 22.7 未満のすべて
Norton Security with Backup NGC 22.7 未満のすべて
Symantec Data Center Security:Server (SDCS:S) 6.0
Symantec Data Center Security:Server (SDCS:S) 6.0MP1
Symantec Data Center Security:Server (SDCS:S) 6.5
Symantec Data Center Security:Server (SDCS:S) 6.5MP1
Symantec Data Center Security:Server (SDCS:S) 6.6
Symantec Data Center Security:Server (SDCS:S) 6.6MP1
Symantec Endpoint Protection (SEP) 12.1.6 MP4 およびそれ以前
Symantec Endpoint Protection for Linux (SEP for Linux) 12.1.6 MP4 およびそれ以前
Symantec Endpoint Protection for Mac (SEP for Mac) 12.1.6 MP4 およびそれ以前
Symantec Mail Security for Domino (SMSDOM) 8.0.9 およびそれ以前
Symantec Mail Security for Domino (SMSDOM) 8.1.3 およびそれ以前
Symantec Mail Security for Microsoft Exchange (SMSMSE) 6.5.8
Symantec Mail Security for Microsoft Exchange (SMSMSE) 7.0.4 およびそれ以前
Symantec Mail Security for Microsoft Exchange (SMSMSE) 7.5.4 およびそれ以前
Symantec Message Gateway (SMG) 10.6.1-3 およびそれ以前
Symantec Message Gateway for Service Providers (SMG-SP) 10.5
Symantec Message Gateway for Service Providers (SMG-SP) 10.6
Symantec Protection Engine (SPE) 7.0.5 およびそれ以前
Symantec Protection Engine (SPE) 7.5.4 およびそれ以前
Symantec Protection Engine (SPE) 7.8.0
Symantec Protection for SharePoint Servers (SPSS) 6.0.6 およびそれ以前
Symantec Protection for SharePoint Servers (SPSS) 6.03 から 6.05
Symantec Web Gateway 
Symantec Web Security .Cloud
CVE (情報セキュリティ 共通脆弱性識別子)
CWE (共通脆弱性タイプ一覧)
ベンダー情報
その他
Change Log
No Changed Details Date of change
0 [2016年07月07日]
  掲載		 Feb. 17, 2018, 10:37 a.m.
NVD Vulnerability Information
CVE-2016-2210
Summary

Buffer overflow in Dec2LHA.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code via a crafted file.

Publication Date July 1, 2016, 8:59 a.m.
Registration Date Jan. 26, 2021, 2:08 p.m.
Last Update Nov. 21, 2024, 11:48 a.m.
Affected software configurations
Configuration1 or higher or less more than less than
cpe:2.3:a:symantec:mail_security_for_microsoft_exchange:6.5.8:*:*:*:*:*:*:*
cpe:2.3:a:symantec:mail_security_for_microsoft_exchange:*:*:*:*:*:*:*:* 7.0 7.0.4
cpe:2.3:a:symantec:mail_security_for_microsoft_exchange:*:*:*:*:*:*:*:* 7.5 7.5.4
Configuration2 or higher or less more than less than
cpe:2.3:a:symantec:norton_power_eraser:*:*:*:*:*:*:*:* 5.0
Configuration3 or higher or less more than less than
cpe:2.3:a:symantec:protection_engine:7.8.0:*:*:*:*:*:*:*
cpe:2.3:a:symantec:protection_engine:*:*:*:*:*:*:*:* 7.0.0 7.0.5
cpe:2.3:a:symantec:protection_engine:*:*:*:*:*:*:*:* 7.5.0 7.5.4
Configuration4 or higher or less more than less than
cpe:2.3:a:symantec:endpoint_protection:12.1.6:mp4:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:12.1.6:mp3:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:12.1.6:mp2:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:12.1.6:mp1:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:12.1.6:mp1a:*:*:*:*:*:*
Configuration5 or higher or less more than less than
cpe:2.3:a:symantec:message_gateway:*:*:*:*:*:*:*:* 10.6.1-3
Configuration6 or higher or less more than less than
cpe:2.3:a:symantec:norton_360:*:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_antivirus:*:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_internet_security:*:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_security:*:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_security_with_backup:*:*:*:*:*:*:*:*
cpe:2.3:a:symantec:ngc:*:*:*:*:*:*:*:* 22.6
Configuration7 or higher or less more than less than
cpe:2.3:a:symantec:message_gateway_for_service_providers:10.6:*:*:*:*:*:*:*
cpe:2.3:a:symantec:message_gateway_for_service_providers:10.5:*:*:*:*:*:*:*
Configuration8 or higher or less more than less than
cpe:2.3:a:symantec:norton_bootable_removal_tool:*:*:*:*:*:*:*:* 2016.0
Configuration9 or higher or less more than less than
cpe:2.3:a:symantec:mail_security_for_domino:*:*:*:*:*:*:*:* 8.0 8.0.9
cpe:2.3:a:symantec:mail_security_for_domino:*:*:*:*:*:*:*:* 8.1 8.1.3
Configuration10 or higher or less more than less than
cpe:2.3:a:symantec:data_center_security_server:6.0:*:*:*:*:*:*:*
cpe:2.3:a:symantec:data_center_security_server:6.0:mp1:*:*:*:*:*:*
cpe:2.3:a:symantec:data_center_security_server:6.6:mp1:*:*:*:*:*:*
cpe:2.3:a:symantec:data_center_security_server:6.5:*:*:*:*:*:*:*
cpe:2.3:a:symantec:data_center_security_server:6.5:mp1:*:*:*:*:*:*
cpe:2.3:a:symantec:data_center_security_server:6.6:*:*:*:*:*:*:*
Configuration11 or higher or less more than less than
cpe:2.3:a:symantec:norton_security:*:*:*:*:*:macos:*:* 13.0.1
Configuration12 or higher or less more than less than
cpe:2.3:a:symantec:advanced_threat_protection:*:*:*:*:*:*:*:* 2.0.3
Configuration13 or higher or less more than less than
cpe:2.3:a:symantec:protection_for_sharepoint_servers:6.03:*:*:*:*:*:*:*
cpe:2.3:a:symantec:protection_for_sharepoint_servers:6.05:*:*:*:*:*:*:*
cpe:2.3:a:symantec:protection_for_sharepoint_servers:6.04:*:*:*:*:*:*:*
cpe:2.3:a:symantec:protection_for_sharepoint_servers:6.06:*:*:*:*:*:*:*
Configuration14 or higher or less more than less than
cpe:2.3:a:symantec:csapi:*:*:*:*:*:*:*:* 10.0.4
Configuration15 or higher or less more than less than
cpe:2.3:a:symantec:endpoint_protection:12.1.6:mp4:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:12.1.6:mp3:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:12.1.6:mp2:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:12.1.6:mp1:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:12.1.6:mp1a:*:*:*:*:*:*
execution environment
1 cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
2 cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
Related information, measures and tools
Common Vulnerabilities List