CVE-2010-0110

N/A Unknown
Published: January 31, 2011 Modified: April 29, 2026
View on NVD

Description

Multiple stack-based buffer overflows in Intel Alert Management System (aka AMS or AMS2), as used in Symantec AntiVirus Corporate Edition (SAVCE) 10.x before 10.1 MR10, Symantec System Center (SSC) 10.x, and Symantec Quarantine Server 3.5 and 3.6, allow remote attackers to execute arbitrary code via (1) a long string to msgsys.exe, related to the AMSSendAlertAct function in AMSLIB.dll in the Intel Alert Handler service (aka Symantec Intel Handler service); a long (2) modem string or (3) PIN number to msgsys.exe, related to pagehndl.dll in the Intel Alert Handler service; or (4) a message to msgsys.exe, related to iao.exe in the Intel Alert Originator service.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://secunia.com/advisories/43099
Source: cve@mitre.org
Vendor Advisory
http://secunia.com/advisories/43106
Source: cve@mitre.org
Vendor Advisory
http://securitytracker.com/id?1024996
Source: cve@mitre.org
http://www.securityfocus.com/bid/45936
Source: cve@mitre.org
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2011&suid=20110126_00
Source: cve@mitre.org
http://www.vupen.com/english/advisories/2011/0234
Source: cve@mitre.org
Vendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-11-028
Source: cve@mitre.org
http://www.zerodayinitiative.com/advisories/ZDI-11-030
Source: cve@mitre.org
http://www.zerodayinitiative.com/advisories/ZDI-11-031
Source: cve@mitre.org
http://www.zerodayinitiative.com/advisories/ZDI-11-032
Source: cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/64940
Source: cve@mitre.org
http://secunia.com/advisories/43099
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://secunia.com/advisories/43106
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://securitytracker.com/id?1024996
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/45936
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2011&suid=20110126_00
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2011/0234
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-11-028
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.zerodayinitiative.com/advisories/ZDI-11-030
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.zerodayinitiative.com/advisories/ZDI-11-031
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.zerodayinitiative.com/advisories/ZDI-11-032
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/64940
Source: af854a3a-2127-422b-91ae-364da2661108

22 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
5.1%
91th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-119

Affected Vendors

symantec

Related CVEs

CVE-2026-40941 N/A
CVE-2026-40084 6.5
CVE-2026-40083 7.2
CVE-2026-40082 5.4
CVE-2026-40080 6.1