Symantec is investigating a potentially serious vulnerability in its Mail Security for SMTP software that could be exploited by hackers to launch denial of service attacks or take control over affected systems. By creating and sending an e-mail with malformed headers, a remote attacker could trigger a buffer overflow in the software, allowing them to execute malicious code with system privileges, according to a Thursday Symantec Deepsight Threat Management System advisory.
Symantec is investigating but has yet to confirm the vulnerability, which affects Mail Security for SMTP 5.0 and was reported by a third party, according to the advisory.
View: The full story
News source: CRN
3 Comments - Add comment