Vulnerability Description
The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec Antivirus Corporate Edition 10.1.4.4010 on Windows 2000 SP4 and Symantec Endpoint Protection before 11.x, does not properly validate the CommandLine field of an AMS request, which allows remote attackers to cause a denial of service (application crash) via a crafted request.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Intel Alert Management System | All versions |
| Symantec | Antivirus | 10.1.4.4010 |
| Microsoft | Windows 2000 | - |
| Symantec | Endpoint Protection | 11.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/42593Vendor Advisory
- http://secunia.com/advisories/43099
- http://www.coresecurity.com/content/symantec-intel-handler-service-remote-dosExploit
- http://www.securityfocus.com/archive/1/515191/100/0/threaded
- http://www.securityfocus.com/bid/45936
- http://www.securitytracker.com/id?1024866
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit
- http://www.vupen.com/english/advisories/2010/3206Vendor Advisory
- http://www.vupen.com/english/advisories/2011/0234
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64028
- http://secunia.com/advisories/42593Vendor Advisory
- http://secunia.com/advisories/43099
- http://www.coresecurity.com/content/symantec-intel-handler-service-remote-dosExploit
- http://www.securityfocus.com/archive/1/515191/100/0/threaded
- http://www.securityfocus.com/bid/45936
FAQ
What is CVE-2010-3268?
CVE-2010-3268 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec Ant...
How severe is CVE-2010-3268?
CVE-2010-3268 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-3268?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Intel Alert Management System, Symantec Antivirus, Microsoft Windows 2000, Symantec Endpoint Protection.