VYPR
Unrated severityNVD Advisory· Published Sep 14, 2006· Updated Jun 16, 2026

CVE-2006-4802

CVE-2006-4802

Description

Format string vulnerability in the Real Time Virus Scan service in Symantec AntiVirus Corporate Edition 8.1 up to 10.0, and Client Security 1.x up to 3.0, allows local users to execute arbitrary code via an unspecified vector related to alert notification messages, a different vector than CVE-2006-3454, a "second format string vulnerability" as found by the vendor.

Affected products

42
  • cpe:2.3:a:symantec:client_security:1.0:*:*:*:*:*:*:*+ 29 more
    • cpe:2.3:a:symantec:client_security:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.434:mr3:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.437:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.446:mr4:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.457:mr5:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.460:mr6:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.464:mr7:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.471:mr8:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.1.1_mr1_build_8.1.1.314a:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.1.1_mr2_build_8.1.1.319:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.1.1_mr3_build_8.1.1.323:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.1.1_mr4_build_8.1.1.329:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.1.1_mr5_build_8.1.1.336:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.6:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.7:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:1.9:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:2.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:client_security:2.0.4:*:*:*:*:*:*:*
    • (no CPE)range: >=1.0, <=3.0
  • cpe:2.3:a:symantec:norton_antivirus:8.1.1.319:*:corporate:*:*:*:*:*+ 10 more
    • cpe:2.3:a:symantec:norton_antivirus:8.1.1.319:*:corporate:*:*:*:*:*
    • cpe:2.3:a:symantec:norton_antivirus:8.1.1.323:*:corporate:*:*:*:*:*
    • cpe:2.3:a:symantec:norton_antivirus:8.1.1.329:*:corporate:*:*:*:*:*
    • cpe:2.3:a:symantec:norton_antivirus:8.1.1_build8.1.1.314a:*:corporate:*:*:*:*:*
    • cpe:2.3:a:symantec:norton_antivirus:8.1:*:corporate:*:*:*:*:*
    • cpe:2.3:a:symantec:norton_antivirus:9.0.1.1000:*:corporate:*:*:*:*:*
    • cpe:2.3:a:symantec:norton_antivirus:9.0.1.1.1000:*:corporate:*:*:*:*:*
    • cpe:2.3:a:symantec:norton_antivirus:9.0.1:*:corporate:*:*:*:*:*
    • cpe:2.3:a:symantec:norton_antivirus:9.0.2:*:corporate:*:*:*:*:*
    • cpe:2.3:a:symantec:norton_antivirus:9.0.4:*:corporate:*:*:*:*:*
    • cpe:2.3:a:symantec:norton_antivirus:9.0:*:corporate:*:*:*:*:*
  • Range: >=8.1, <=10.0

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.