CVE-2011-0548
Symantec Mail Security 6.x-8.x - Buffer Overflow via Crafted PRZ File
Title source: llmDescription
Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file. NOTE: this may overlap CVE-2011-1217.
References (5)
Core 5
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/44779
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1025595
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1025594
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1025596
Third Party Advisory x_refsource_confirm
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2011&suid=20110531_00
Scores
EPSS
0.0706
EPSS Percentile
91.6%
Details
CWE
CWE-119
Status
published
Products (24)
symantec/brightmail_and_messaging_gateway
4.0.0
symantec/brightmail_and_messaging_gateway
4.1.0
symantec/brightmail_and_messaging_gateway
5.0
symantec/brightmail_and_messaging_gateway
7.7
symantec/brightmail_and_messaging_gateway
8.0
symantec/brightmail_and_messaging_gateway
9.0
symantec/brightmail_and_messaging_gateway
9.0.1
symantec/brightmail_and_messaging_gateway
9.0.2
symantec/brightmail_and_messaging_gateway
< 9.5
symantec/data_loss_prevention
7.0
... and 14 more
Published
Jul 18, 2011
Tracked Since
Feb 18, 2026