{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Symantec Mail Security for Microsoft Exchange versions 5.0.10, 5.0.11, 5.0.12, 6.0.6, 6.0.7 et 6.0.8 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Mail Security for SMTP versions 5.0.x ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Mail Security Appliance/Symantec BrightMail Appliance versions 5.0.x et ult\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec BrightMail Appliance versions 8.0.0 et 8.0.1 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Data Loss Prevention Enforce/Detection Servers version 7.2 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Data Loss Prevention Enforce/Detection Servers for Linux versions 8.1.1 et 9.0.1 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Data Loss Prevention Enforce/Detection Servers for Windows versions 8.1.1 et 9.0.1 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Mail Security for Domino versions 7.5.3.25, 7.5.4.29, 7.5.5.32, 7.5.6 et 8.0 ;","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}},{"description":"Symantec Data Loss Prevention Endpoint Agents versions 8.1.1 et 9.0.1.","product":{"name":"N/A","vendor":{"name":"Symantec","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans le module Autonomy KeyView\nfourni avec de nombreux produits Symantec. L'exploitation de cette\nvuln\u00e9rabilit\u00e9, par le biais d'un fichier au format Excel, permet\nl'ex\u00e9cution de code arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[],"links":[],"reference":"CERTA-2009-AVI-351","revisions":[{"description":"version initiale.","revision_date":"2009-08-26T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 dans des produits <span class=\"textit\">Symantec</span>\npermet l'ex\u00e9cution de code arbitraire \u00e0 distance.\n","title":"Vuln\u00e9rabilit\u00e9 dans les produits Symantec","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Symantec SYM09-010 du 25 ao\u00fbt 2009","url":"http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&suid=20090825_00"}]}