Vulnerabilities > Symantec > WEB Security > Critical

DATE CVE VULNERABILITY TITLE RISK
2007-10-05 CVE-2007-0447 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Symantec products
Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote attackers to execute arbitrary code via multiple crafted CAB archives.
network
symantec CWE-119
critical
9.3
2007-10-05 CVE-2007-3699 Remote vulnerability in Symantec AntiVirus Malformed CAB and RAR Compression
The Decomposer component in multiple Symantec products allows remote attackers to cause a denial of service (infinite loop) via a certain value in the PACK_SIZE field of a RAR archive file header.
network
symantec
critical
9.3