Vulnerabilities > CVE-2004-0487 - Remote Code Execution vulnerability in Symantec Norton Antivirus 2.1

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

symantec

critical

NVD

Published: 2004-08-18

Updated: 2017-07-11

Summary

A certain ActiveX control in Symantec Norton AntiVirus 2004 allows remote attackers to cause a denial of service (resource consumption) and possibly execute arbitrary programs.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Norton Antivirus 2.1	1

References

http://marc.info/?l=bugtraq&m=108515369718455&w=2
http://secunia.com/advisories/11676
http://www.ciac.org/ciac/bulletins/o-149.shtml
http://www.kb.cert.org/vuls/id/312510
http://www.lac.co.jp/security/csl/intelligence/SNSadvisory_e/72_e.html
http://www.osvdb.org/6303
http://www.securityfocus.com/bid/10392
http://www.symantec.com/avcenter/security/Content/2004.05.20.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/16220