The host is installed with Symantec AntiVirus Corporate Edition (SAVCE) 10.x before 10.1 MR10 or Symantec System Center (SSC) 10.x or Symantec Quarantine Server 3.5 or 3.6 and is prone to multiple stack based buffer overflow. The flaws are present in the applications, which fail to validate input passed to msgsys.exe. Successful exploitation could allow an attacker to execute arbitrary code.