Lucene search

[email protected]CVE-2005-1346

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-1346

2005-05-0204:00:00

[email protected]

web.nvd.nist.gov

symantec

antivirus

denial of service

rar

vulnerability

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.2%

JSON

Multiple Symantec AntiVirus products, including Norton AntiVirus 2005 11.0.0, Web Security Web Security 3.0.1.72, Mail Security for SMTP 4.0.5.66, AntiVirus Scan Engine 4.3.7.27, SAV/Filter for Domino NT 3.1.1.87, and Mail Security for Exchange 4.5.4.743, when running on Windows, allows remote attackers to cause a denial of service (component crash) and avoid detection via a crafted RAR file.

Affected configurations

NVD

Node

symantecantivirus_scan_engineMatch4.3.7.27

symantecmail_securityMatch4.0.5.66smtp

symantecmail_securityMatch4.5.4.743exchange

symantecnorton_antivirusMatch2005_11.0.0

symantecnorton_internet_securityMatch2005_contains_nav_11.0.0

symantecnorton_system_worksMatch2005_contains_nav_11.0.0

symantecsymav_filter_domino_ntMatch3.1.1.87

symantecweb_securityMatch3.0.1.72

CPENameOperatorVersion
symantec:antivirus_scan_enginesymantec antivirus scan engineeq4.3.7.27
symantec:mail_securitysymantec mail securityeq4.0.5.66
symantec:mail_securitysymantec mail securityeq4.5.4.743
symantec:norton_antivirussymantec norton antiviruseq2005_11.0.0
symantec:norton_internet_securitysymantec norton internet securityeq2005_contains_nav_11.0.0
symantec:norton_system_workssymantec norton system workseq2005_contains_nav_11.0.0
symantec:symav_filter_domino_ntsymantec symav filter domino nteq3.1.1.87
symantec:web_securitysymantec web securityeq3.0.1.72

CPE	Name	Operator	Version
symantec:antivirus_scan_engine	symantec antivirus scan engine	eq	4.3.7.27
symantec:mail_security	symantec mail security	eq	4.0.5.66
symantec:mail_security	symantec mail security	eq	4.5.4.743
symantec:norton_antivirus	symantec norton antivirus	eq	2005_11.0.0
symantec:norton_internet_security	symantec norton internet security	eq	2005_contains_nav_11.0.0
symantec:norton_system_works	symantec norton system works	eq	2005_contains_nav_11.0.0
symantec:symav_filter_domino_nt	symantec symav filter domino nt	eq	3.1.1.87
symantec:web_security	symantec web security	eq	3.0.1.72

References

securityresponse.symantec.com/avcenter/security/Content/2005.04.27.html

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.2%

JSON

Related for CVE-2005-1346

cvelist1 nvd1