Download Security Update 7 Release Notes (PDF)
This security update can only be downloaded using the LiveUpdate feature of Symantec NetRecon 3.5.
The SU7 theme is a response check for the new PHP buffer overflow and improved NAVCE discovery.
Symantec NetRecon 3.5 SU7 provides a new check for multiple buffer overflows in PHP that allow remote access to servers. It also enhances the two new NAVCE objectives to discover NAVCE on more ports and on non-default ports.
Enhanced Objectives
- Discover network resources not running Norton AntiVirus Corporate Edition
An additional default port (port 3837) for NAVCE (Norton AntiVirus Corporate Edition) detection has been included.
The ability for users to scan ports for NAVCE, in addition to the default port, has been added. See the Release Notes for instructions on how to specify additional NAVCE ports to scan.
- Discover network resources running Norton AntiVirus Corporate Edition
An additional default port (port 3837) for NAVCE detection has been included.
The ability for users to scan ports for NAVCE, in addition to the default port, has been added. See the Release Notes for instructions on how to specify additional NAVCE ports to scan.
New Vulnerability Checks
- Multiple Buffer Overflows in PHP allow remote access to server
Symantec NetRecon can discover network resources running web servers and versions of PHP vulnerable to buffer overflow exploits.
PHP is a common scripting language that can be installed on web servers such as, Apache, IIS, Netscape/iPlanet, and others.
Vulnerabilities in the php_mime_split function may allow an intruder to execute arbitrary code with the privileges of the web server. This vulnerability is detected based on the PHP version, obtained from the web server banner.
For additional coverage, download the Enterprise Security Manager Response Policy for PHP Buffer Overflow Vulnerability.
Last modified on: Tuesday, 05-Mar-02 20:50:15
|
