J-Security Center

Title: Multiple Symantec Products Log Viewer Multiple Script Injection Vulnerabilities

Severity: MODERATE

Description:

Multiple Symantec products are prone to multiple script-injection vulnerabilities because the applications fail to properly sanitize user-supplied input before using it in dynamically generated content.

Specifically, the Log Viewer feature ('ccLgView.exe') is prone to two parsing issues that attackers can trigger by sending a crafted email containing HTML and script code. These scripts could be run via the 'View Logs - Email Filtering' option.

Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible.

These issues affect the following products:

Norton 360 1.0
Norton Internet Security 2005 through 2008
Symantec AntiVirus 9.0MR6 and earlier
Symantec AntiVirus 10.1 MR7 and earlier
Symantec AntiVirus 10.2 MR1 and earlier
Symantec Endpoint Protection 11.0
Symantec Client Security 2.0 MR6 and earlier
Symantec Client Security 3.1 MR7 and earlier

Affected Products:

  • Symantec AntiVirus Corporate Edition 10.1
  • Symantec AntiVirus Corporate Edition 10.1 MR6
  • Symantec AntiVirus Corporate Edition 10.1 MR6 MP1
  • Symantec AntiVirus Corporate Edition 10.1 MR7
  • Symantec AntiVirus Corporate Edition 10.1.0.394
  • Symantec AntiVirus Corporate Edition 10.1.0.396
  • Symantec AntiVirus Corporate Edition 10.1.0.400
  • Symantec AntiVirus Corporate Edition 10.1.0.401
  • Symantec AntiVirus Corporate Edition 10.1.4
  • Symantec AntiVirus Corporate Edition 10.1.4 MR4 MP1 - build 4010
  • Symantec AntiVirus Corporate Edition 10.1.4.4000 (MR4)
  • Symantec AntiVirus Corporate Edition 10.1.4.4010
  • Symantec AntiVirus Corporate Edition 10.1.5.5000 (MR5)
  • Symantec AntiVirus Corporate Edition 10.1.5.5001 (MR5-PP1)
  • Symantec AntiVirus Corporate Edition 10.1.5.5010 (MR5-MP1)
  • Symantec AntiVirus Corporate Edition 10.1.6.600
  • Symantec AntiVirus Corporate Edition 10.1.6.6000
  • Symantec AntiVirus Corporate Edition 10.1.6.6010 (MR6-MP1)
  • Symantec AntiVirus Corporate Edition 10.1.7.7000 (MR7)
  • Symantec AntiVirus Corporate Edition 10.2
  • Symantec AntiVirus Corporate Edition 10.2 MR1
  • Symantec AntiVirus Corporate Edition 10.2.0.276 (STM 32-bit)
  • Symantec AntiVirus Corporate Edition 10.2.0.298 (STM 64-bit)
  • Symantec AntiVirus Corporate Edition 10.2.0.313 (STM-PP1)
  • Symantec AntiVirus Corporate Edition 10.2.1.1000 (MR1)
  • Symantec AntiVirus Corporate Edition 9 MR6 MP1
  • Symantec AntiVirus Corporate Edition 9.0.0
  • Symantec AntiVirus Corporate Edition 9.0.0 .0.338
  • Symantec AntiVirus Corporate Edition 9.0.0.1300 (STM-PP1)
  • Symantec AntiVirus Corporate Edition 9.0.0.1400 (STM-PP2)
  • Symantec AntiVirus Corporate Edition 9.0.1 .1.1000
  • Symantec AntiVirus Corporate Edition 9.0.1.1000 (MR1)
  • Symantec AntiVirus Corporate Edition 9.0.1.1001 (MR1-PP1)
  • Symantec AntiVirus Corporate Edition 9.0.1.1100 (MR1-MP1)
  • Symantec AntiVirus Corporate Edition 9.0.2 .1000
  • Symantec AntiVirus Corporate Edition 9.0.3 .1000
  • Symantec AntiVirus Corporate Edition 9.0.3.1100 (MR3-MP1)
  • Symantec AntiVirus Corporate Edition 9.0.4
  • Symantec AntiVirus Corporate Edition 9.0.4 MR4 build 1000
  • Symantec AntiVirus Corporate Edition 9.0.5
  • Symantec AntiVirus Corporate Edition 9.0.5.1000 (MR5)
  • Symantec AntiVirus Corporate Edition 9.0.5.1001 (MR5-PP1)
  • Symantec AntiVirus Corporate Edition 9.0.5.1100
  • Symantec AntiVirus Corporate Edition 9.0.6 MR6 MP1 - build 1100
  • Symantec AntiVirus Corporate Edition 9.0.6.1000
  • Symantec AntiVirus Corporate Edition 9.0.6.1000 (MR6)
  • Symantec Client Security 2.0 MR6 MP1
  • Symantec Client Security 2.0.0
  • Symantec Client Security 2.0.0 (SCF 7.1)
  • Symantec Client Security 2.0.0 (SCF 7.1)
  • Symantec Client Security 2.0.0 STM build 9.0.0.338
  • Symantec Client Security 2.0.0.1300 (STM-PP1)
  • Symantec Client Security 2.0.0.1400 (STM-PP2)
  • Symantec Client Security 2.0.0.338 (STM)
  • Symantec Client Security 2.0.1 MR1 b9.0.1.1000
  • Symantec Client Security 2.0.1.1000 (MR1)
  • Symantec Client Security 2.0.1.1001 (MR1-PP1)
  • Symantec Client Security 2.0.1.1100 (MR1-MP1)
  • Symantec Client Security 2.0.2 MR2 b9.0.2.1000
  • Symantec Client Security 2.0.2.1000 (MR2)
  • Symantec Client Security 2.0.3 MR3 b9.0.3.1000
  • Symantec Client Security 2.0.3.1000 (MR3)
  • Symantec Client Security 2.0.3.1100 (MR3-MP1)
  • Symantec Client Security 2.0.4
  • Symantec Client Security 2.0.4 MR4 build 1000
  • Symantec Client Security 2.0.5 build 1100
  • Symantec Client Security 2.0.5.1000 (MR5)
  • Symantec Client Security 2.0.5.1001 (MR5-PP1)
  • Symantec Client Security 2.0.6 MR6
  • Symantec Client Security 2.0.6 MR6 MP1 - build 1100
  • Symantec Client Security 2.0.6.1000 (MR6)
  • Symantec Client Security 3.1
  • Symantec Client Security 3.1 MR6
  • Symantec Client Security 3.1 MR6 MP1
  • Symantec Client Security 3.1 MR7
  • Symantec Client Security 3.1.0.394
  • Symantec Client Security 3.1.0.396
  • Symantec Client Security 3.1.0.400
  • Symantec Client Security 3.1.0.401
  • Symantec Client Security 3.1.4 MR4 MP1 - build 4010
  • Symantec Client Security 3.1.4.4000 (MR4)
  • Symantec Client Security 3.1.5.5000 (MR5)
  • Symantec Client Security 3.1.5.5001 (MR5-PP1)
  • Symantec Client Security 3.1.5.5010 (MR5-MP1)
  • Symantec Client Security 3.1.6.6000
  • Symantec Client Security 3.1.6.6000
  • Symantec Client Security 3.1.6.6010 (MR6-MP1)
  • Symantec Client Security 3.1.7.7000 (MR7)
  • Symantec Endpoint Protection 11.0
  • Symantec Norton 360 1.0
  • Symantec Norton Internet Security 2005
  • Symantec Norton Internet Security 2005 11.0.0
  • Symantec Norton Internet Security 2005 11.0.9
  • Symantec Norton Internet Security 2005 11.5.6 .14
  • Symantec Norton Internet Security 2005 Anti Spyware Edition
  • Symantec Norton Internet Security 2005 Professional Edition
  • Symantec Norton Internet Security 2006
  • Symantec Norton Internet Security 2006 Professional Edition
  • Symantec Norton Internet Security 2007
  • Symantec Norton Internet Security 2008

References:

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.