Vulnerabilities > CVE-2005-0923 - Local Denial Of Service vulnerability in Symantec products

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

local

low complexity

symantec

NVD

Published: 2005-05-02

Updated: 2008-09-05

Summary

The SmartScan feature in the Auto-Protect module for Symantec Norton AntiVirus 2004 and 2005, as also used in Internet Security 2004/2005 and System Works 2004/2005, allows attackers to cause a denial of service (CPU consumption and system crash) by renaming a file on a network share.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Norton Antivirus 2.1 Symantec Norton Antivirus 2005 Symantec Norton Internet Security 2004 Symantec Norton Internet Security 2005 Symantec Norton System Works 2004_Professional Symantec Norton System Works 2005_Premier	6

References

http://secunia.com/advisories/14741
http://securityresponse.symantec.com/avcenter/security/Content/2005.03.28.html
http://securitytracker.com/id?1013585
http://securitytracker.com/id?1013586
http://securitytracker.com/id?1013587
http://www.kb.cert.org/vuls/id/713620
http://www.securityfocus.com/bid/12924