{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Symantec Norton System Works pour Macintosh 3.0.","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec AntiVirus pour Caching versions ant\u00e9rieures \u00e0 4.3.3 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Norton Internet Security 2004 (pro) pour Windows ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Norton System Works 2004 pour Windows ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec BrightMail AntiSpam 5.5 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec AntiVirus pour Network Attached Storage versions ant\u00e9rieures \u00e0 4.3.3 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec AntiVirus Corporate Edition 9.0 versions ant\u00e9rieures \u00e0 9.01.1000 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec AntiVirus Scan Engine 4.3 versions ant\u00e9rieures \u00e0 4.3.3 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Norton Antivirus 9.0 pour Macintosh ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Norton System Works 2004 pour Macintosh ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec AntiVirus Corporate Edition 8.01, 8.1.1 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec AntiVirus/Filtering pour Domino Ports 3.0 (OS400, Linux, Solaris) versions ant\u00e9rieures \u00e0 3.0.7 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec AntiVirus/Filtering pour Domino NT 3.1 versions ant\u00e9rieures \u00e0 3.1.1 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Norton Internet Security 2004 pour Macintosh ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec BrightMail AntiSpam 4.0 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Norton Antivirus 2004 pour Macintosh ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Web Security 3.0 versions ant\u00e9rieures \u00e0 3.0.1.70 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Gateway Security 2.0, 2.0.1 - 5400 Series ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Norton AntiVirus pour Microsoft Exchange 2.1 versions ant\u00e9rieures \u00e0 2.18.85 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Mail Security pour Microsoft Exchange 4.5 versions ant\u00e9rieures \u00e0 4.5.3 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Norton Internet Security pour Macintosh 3.0 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Norton Antivirus 2004 pour Windows ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Mail Security pour Domino 4.0 versions ant\u00e9rieures \u00e0 4.0.1 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Mail Security pour Microsoft Exchange 4.0 versions ant\u00e9rieures \u00e0 4.0.10.465 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec AntiVirus/Filtering pour Domino Ports 3.0 (AIX) versions ant\u00e9rieures \u00e0 3.0.6 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Client Security 1.0 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Mail Security pour SMTP 4.0 versions ant\u00e9rieures \u00e0 4.0.2 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec AntiVirus pour SMTP 3.1 versions ant\u00e9rieures \u00e0 3.1.7 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Client Security 2.0 versions ant\u00e9rieures \u00e0 9.01.1000 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Gateway Security 1.0 - 5300 Series ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans le moteur DEC2EXE qui est\nutilis\u00e9 par les anciennes versions des produits Symantec pour le\ntraitement des fichiers compress\u00e9s avec UPX. Un utilisateur mal\nintentionn\u00e9 peut, par l'interm\u00e9diaire d'un fichier compress\u00e9 UPX\nhabilement constitu\u00e9, ex\u00e9cuter du code arbitraire \u00e0 distance.\n\nLe moteur DEC2EXE n'est plus utilis\u00e9 dans les versions r\u00e9centes des\nproduits Symantec.\n\n## Solution\n\nAppliquer le correctif de Symantec, disponible depuis la page :\n\n    http://www.symantec.com/techsupp\n","cves":[],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Symantec SYM05-005 du 08 f\u00e9vrier 2005    :","url":"http://www.sarc.com/avcenter/security/Content/2005.02.08.html"}],"reference":"CERTA-2005-AVI-062","revisions":[{"description":"version initiale.","revision_date":"2005-02-10T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 pr\u00e9sente dans divers produits Symantec lors du\ntraitement des fichiers compress\u00e9s avec UPX permet l'ex\u00e9cution de code\narbitraire \u00e0 distance.\n","title":"Vuln\u00e9rabilit\u00e9s dans les produits Symantec","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Symantec SYM05-003 du 08 f\u00e9vrier 2005","url":null}]}