Lucene search

[email protected]CVE-2004-0363

HistoryApr 15, 2004 - 4:00 a.m.

CVE-2004-0363

2004-04-1504:00:00

[email protected]

web.nvd.nist.gov

cve-2004-0363

norton antispam

stack overflow

remote code execution

symspamhelper

activex

buffer overflow

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.941 High

EPSS

Percentile

99.2%

JSON

Stack-based buffer overflow in the SymSpamHelper ActiveX component (symspam.dll) in Norton AntiSpam 2004, as used in Norton Internet Security 2004, allows remote attackers to execute arbitrary code via a long parameter to the LaunchCustomRuleWizard method.

Affected configurations

NVD

Node

symantecnorton_antispamMatch2004

CPENameOperatorVersion
symantec:norton_antispamsymantec norton antispameq2004

CPE	Name	Operator	Version
symantec:norton_antispam	symantec norton antispam	eq	2004

References

marc.info/?l=bugtraq&m=107970870606638&w=2

marc.info/?l=bugtraq&m=107980262324362&w=2

secunia.com/advisories/11169

www.kb.cert.org/vuls/id/344718

www.nextgenss.com/advisories/antispam.txt

www.sarc.com/avcenter/security/Content/2004.03.19.html

www.securityfocus.com/bid/9916

exchange.xforce.ibmcloud.com/vulnerabilities/15536

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.941 High

EPSS

Percentile

99.2%

JSON

Related for CVE-2004-0363

checkpoint_advisories1 packetstorm1 saint4 cvelist1 cert1 nvd1