既昨天咔吧暴严重漏洞后，国际杀软巨头赛门铁克(Symantec AntiVirus)今天也暴出严重漏洞，以下是漏洞报告原文：

FrSIRT Advisory : FrSIRT/ADV-2005-1954
CVE Reference : CAN-2005-2758
Rated as : Critical //漏洞等级：严重
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2005-10-05 //发布日期

 * Technical Description * //漏洞简述

A vulnerability has been identified in Symantec AntiVirus Scan Engine, which could be exploited by remote attackers to execute arbitrary commands or cause a denial of service. This flaw is due to a heap overflow error in the the administrative interface that does not properly handle malformed HTTP requests (port 8004/tcp), which may be exploited by remote attackers to crash a vulnerable application or execute arbitrary commands with SYSTEM privileges. //赛门铁克的反病毒引擎存在缺陷，导致攻击者可以远程执行任意可执行代码或发起拒绝服务攻击，这是由于软件的管理接口部分没有过滤来自8004端口的畸形HTTP请求而发生溢出所导致的。

 * Affected Products *  //受影响的版本

Symantec AntiVirus Scan Engine 4.0
Symantec AntiVirus Scan Engine 4.3
Symantec AntiVirus Scan Engine for ISA 4.0
Symantec AntiVirus Scan Engine for ISA 4.3
Symantec AntiVirus Scan Engine for Netapp Filer 4.0
Symantec AntiVirus Scan Engine for Messaging 4.3
Symantec AntiVirus Scan Engine for Netapp NetCache 4.0
Symantec AntiVirus Scan Engine for Network Attached Storage 4.3
Symantec AntiVirus Scan Engine for Bluecoat 4.0
Symantec AntiVirus Scan Engine for Caching 4.3
Symantec AntiVirus Scan Engine for Microsoft SharePoint 4.3
Symantec AntiVirus Scan Engine for Clearswift 4.0
Symantec AntiVirus Scan Engine for Clearswift 4.3

 * Solution *  //解决方法: 更新杀毒引擎到 4.3.12版本

Upgrade to Symantec AntiVirus Scan Engine versions 4.3.12.

 * Credits *

Vulnerability reported by iDEFENSE

 * ChangeLog *

2005-10-05 : Original Advisory