Vulnerabilities > CVE-2004-1910 - Denial Of Service vulnerability in Symantec Security Check Virus Detection COM Object
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
rufsi.dll in Symantec Virus Detection allows remote attackers to cause a denial of service (crash) via a long string to the GetPrivateProfileString function. NOTE: this issue was originally reported as a buffer overflow, but that specific claim is disputed by the vendor, although a crash is acknowledged.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Symantec Security Check Virus Detection COM Object Denial Of Service Vulnerability. CVE-2004-1910. Dos exploit for windows platform |
| id | EDB-ID:23919 |
| last seen | 2016-02-02 |
| modified | 2004-04-07 |
| published | 2004-04-07 |
| reporter | Rafel Ivgi The-Insider |
| source | https://www.exploit-db.com/download/23919/ |
| title | Symantec Security Check Virus Detection COM Object Denial of Service Vulnerability |