Vulnerabilities > CVE-2004-0363 - Unspecified vulnerability in Symantec Norton Antispam 2004

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
symantec
exploit available
metasploit

Summary

Stack-based buffer overflow in the SymSpamHelper ActiveX component (symspam.dll) in Norton AntiSpam 2004, as used in Norton Internet Security 2004, allows remote attackers to execute arbitrary code via a long parameter to the LaunchCustomRuleWizard method.

Vulnerable Configurations

Part Description Count
Application
Symantec
1

Exploit-Db

descriptionNorton AntiSpam 2004 SymSpamHelper ActiveX Control Buffer Overflow. CVE-2004-0363. Remote exploit for windows platform
idEDB-ID:16595
last seen2016-02-02
modified2010-05-09
published2010-05-09
reportermetasploit
sourcehttps://www.exploit-db.com/download/16595/
titleNorton AntiSpam 2004 SymSpamHelper ActiveX Control Buffer Overflow

Metasploit

descriptionThis module exploits a stack buffer overflow in Norton AntiSpam 2004. When sending an overly long string to the LaunchCustomRuleWizard() method of symspam.dll (2004.1.0.147) an attacker may be able to execute arbitrary code.
idMSF:EXPLOIT/WINDOWS/BROWSER/NIS2004_ANTISPAM
last seen2020-05-22
modified2017-10-05
published2009-01-10
referenceshttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0363
reporterRapid7
sourcehttps://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/browser/nis2004_antispam.rb
titleNorton AntiSpam 2004 SymSpamHelper ActiveX Control Buffer Overflow

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/83053/nis2004_antispam.rb.txt
idPACKETSTORM:83053
last seen2016-12-05
published2009-11-26
reporterMC
sourcehttps://packetstormsecurity.com/files/83053/Norton-AntiSpam-2004-SymSpamHelper-ActiveX-Control-Buffer-Overflow.html
titleNorton AntiSpam 2004 SymSpamHelper ActiveX Control Buffer Overflow

Saint

bid9916
descriptionNorton AntiSpam 2004 SymSpamHelper ActiveX control buffer overflow
idmisc_symspam
osvdb6249
titlenorton_antispam_symspam_rulewizard
typeclient