Remote root exploit using scan engine 4.0 or 4.3

[jkupski]

I don't have a direct link (in fact, I can't find the bulletin on symantec's website) but thought I would post the following anyway in case anyone is affected.

OCTOBER 10, 2005 (IDG NEWS SERVICE) - Users of Symantec Corp.'s AntiVirus Scan Engine are being advised to upgrade their software, as a result of a critical security bug in the product. The flaw could theoretically allow an attacker to take control of an affected system, according to a Symantec advisory.

Because of a bug in the Scan Engine's administrative interface, it is possible for an attacker to take over a system running the software by creating a specially crafted HTTP request, Symantec said. The attacker would need to gain access to an exposed administrative port on the server for this attack, the report said.

Users of Versions 4.0 and 4.3 of the Scan Engine product are advised to upgrade to Version 4.3.12, Symantec said.