Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0487

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0487
Last Modified 05 Sep 2008 04:38:32
Published 18 Aug 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0487

Summary

A certain ActiveX control in Symantec Norton AntiVirus 2004 allows remote attackers to cause a denial of service (resource consumption) and possibly execute arbitrary programs.

Vulnerable Systems

Application

  • Symantec Norton Antivirus 2.1


References

CERT-VN - VU#312510

XF - nav-activex-code-execution(16220)

CONFIRM - http://www.symantec.com/avcenter/security/Content/2004.05.20.html

BID - 10392

MISC - http://www.lac.co.jp/security/csl/intelligence/SNSadvisory_e/72_e.html

CIAC - O-149

SECUNIA - 11676

OSVDB - 6303

BUGTRAQ - 20040521 [SNS Advisory No.72] Symantec Norton AntiVirus 2004 ActiveX Control Vulnerability


Last Updated: 27 May 2016 10:38:37