CVSS: 7.5EPSS: 1%CPEs: 10EXPL: 2CVE-2004-0375 – Symantec Client Firewall Products 5 - 'SYMNDIS.SYS' Driver Remote Denial of Service
https://notcve.org/view.php?id=CVE-2004-0375
05 May 2004 — SYMNDIS.SYS in Symantec Norton Internet Security 2003 and 2004, Norton Personal Firewall 2003 and 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 and 1.1 allow remote attackers to cause a denial of service (infinite loop) via a TCP packet with (1) SACK option or (2) Alternate Checksum Data option followed by a length of zero. SIMNDIS.SYS en Symantec Norton Internet Securiy 2003 y 2004, Norton Personal Firewall 2003 y 2004, Client Firewall 5.01 y 5.1.1, y Client Security 1.0 y 1.1 permite a ata... • https://www.exploit-db.com/exploits/23846 •
CVSS: 9.8EPSS: 46%CPEs: 2EXPL: 0CVE-2004-0364
https://notcve.org/view.php?id=CVE-2004-0364
23 Mar 2004 — The WrapNISUM ActiveX component (WrapUM.dll) in Norton Internet Security 2004 is marked safe for scripting, which allows remote attackers to execute arbitrary programs via the LaunchURL method. El componente Activex WrWrapNISUM (WrapUM.dll) de Norton Internet Security 2004 está marcado como seguro para secuencias de comandos, lo que permite a atacantes remotos ejecutar programas arbitrarios mediante el método LaunchURL. • http://marc.info/?l=bugtraq&m=107970885922442&w=2 •
CVSS: 7.8EPSS: 0%CPEs: 23EXPL: 0CVE-2003-0994
https://notcve.org/view.php?id=CVE-2003-0994
03 Feb 2004 — The GUI functionality for an interactive session in Symantec LiveUpdate 1.70.x through 1.90.x, as used in Norton Internet Security 2001 through 2004, SystemWorks 2001 through 2004, and AntiVirus and Norton AntiVirus Pro 2001 through 2004, AntiVirus for Handhelds v3.0, allows local users to gain SYSTEM privileges. La funcionalidad gui para una sesión interactiva en ymantec LiveUpdate 1.70.x hasta la 1.90.x (usadas en Norton Internet Security 2001 hasta 2004, SystemWorks 2001 hasta 2004, y AntiVirus y Norton ... • http://lists.grok.org.uk/pipermail/full-disclosure/2004-January/015510.html •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 3CVE-2003-1149 – Symantec Norton Internet Security 2003 6.0.4.34 - Error Message Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2003-1149
27 Oct 2003 — Cross-site scripting (XSS) vulnerability in Symantec Norton Internet Security 2003 6.0.4.34 allows remote attackers to inject arbitrary web script or HTML via a URL to a blocked site, which is displayed on the blocked sites error page. • https://www.exploit-db.com/exploits/23304 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2002-1695
https://notcve.org/view.php?id=CVE-2002-1695
31 Dec 2002 — Norton Internet Security 2001 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while Norton Internet Security is running. • http://online.securityfocus.com/archive/1/250591 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2002-0663
https://notcve.org/view.php?id=CVE-2002-0663
26 Jul 2002 — Buffer overflow in HTTP Proxy for Symantec Norton Personal Internet Firewall 3.0.4.91 and Norton Internet Security 2001 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large outgoing HTTP request. • http://securityresponse.symantec.com/avcenter/security/Content/2002.07.15.html •