CVSS: 7.5EPSS: 0%CPEs: 49EXPL: 0CVE-2005-0249
https://notcve.org/view.php?id=CVE-2005-0249
Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote attackers to execute arbitrary code via a UPX compressed file containing a negative virtual offset to a crafted PE header. • http://securitytracker.com/id?1013133 http://www.kb.cert.org/vuls/id/107822 http://www.symantec.com/avcenter/security/Content/2005.02.08.html http://xforce.iss.net/xforce/alerts/id/187 https://exchange.xforce.ibmcloud.com/vulnerabilities/18869 •
CVSS: 5.0EPSS: 0%CPEs: 16EXPL: 0CVE-2004-2147
https://notcve.org/view.php?id=CVE-2004-2147
Unknown versions of Symantec Norton AntiVirus and Microsoft Outlook allow attackers to cause a denial of service (crash) via malformed e-mail messages (1) without a body or (2) without a carriage return ("\n") separating the headers from the body. • http://www.securityfocus.com/archive/82/376487/2004-09-24/2004-09-30/0 http://www.securityfocus.com/bid/11259 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2004-0920
https://notcve.org/view.php?id=CVE-2004-0920
Symantec Norton AntiVirus 2004, and earlier versions, allows a virus or other malicious code to avoid detection or cause a denial of service (application crash) using a filename containing an MS-DOS device name. Symantec Norton Antivirus 2004 y versiones anteriores permiten a un virus u otro código malicioso evitar ser detectados o causar una denegación de servicio (caída de aplicación) usando un nombre de fichero que contenga un nombre de dispositivo de MS-DOS. • http://www.idefense.com/application/poi/display?id=147&type=vulnerabilities http://www.seifried.org/security/advisories/kssa-010.html https://exchange.xforce.ibmcloud.com/vulnerabilities/17603 •
CVSS: 10.0EPSS: 37%CPEs: 1EXPL: 0CVE-2004-0487
https://notcve.org/view.php?id=CVE-2004-0487
A certain ActiveX control in Symantec Norton AntiVirus 2004 allows remote attackers to cause a denial of service (resource consumption) and possibly execute arbitrary programs. Un cierto control ActiveX en Symantec Norton Antivirus 2004 permite a atacantes remotos causar una denegación de servicio y posiblemente ejecutar programas de su elección. • http://marc.info/?l=bugtraq&m=108515369718455&w=2 http://secunia.com/advisories/11676 http://www.ciac.org/ciac/bulletins/o-149.shtml http://www.kb.cert.org/vuls/id/312510 http://www.lac.co.jp/security/csl/intelligence/SNSadvisory_e/72_e.html http://www.osvdb.org/6303 http://www.securityfocus.com/bid/10392 http://www.symantec.com/avcenter/security/Content/2004.05.20.html https://exchange.xforce.ibmcloud.com/vulnerabilities/16220 •
CVSS: 7.2EPSS: 0%CPEs: 23EXPL: 0CVE-2003-0994
https://notcve.org/view.php?id=CVE-2003-0994
The GUI functionality for an interactive session in Symantec LiveUpdate 1.70.x through 1.90.x, as used in Norton Internet Security 2001 through 2004, SystemWorks 2001 through 2004, and AntiVirus and Norton AntiVirus Pro 2001 through 2004, AntiVirus for Handhelds v3.0, allows local users to gain SYSTEM privileges. La funcionalidad gui para una sesión interactiva en ymantec LiveUpdate 1.70.x hasta la 1.90.x (usadas en Norton Internet Security 2001 hasta 2004, SystemWorks 2001 hasta 2004, y AntiVirus y Norton AntiVirus Pro 2001 hasta 2004, AntiVirus for Handhelds v3.0) permite que usuarios locales obtengan privilegios SYSTEM. • http://lists.grok.org.uk/pipermail/full-disclosure/2004-January/015510.html http://marc.info/?l=bugtraq&m=107393473928245&w=2 http://www.osvdb.org/3428 http://www.secnetops.biz/research/SRT2004-01-09-1022.txt •