7.9 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.906 High
EPSS
Percentile
98.8%
Multiple unspecified “input validation error” vulnerabilities in multiple ActiveX controls in NavComUI.dll, as used in multiple Norton AntiVirus, Internet Security, and System Works products for 2006, allows remote attackers to execute arbitrary code via (1) the AnomalyList property to AxSysListView32 and (2) Anomaly property to AxSysListView32OAA.
secunia.com/advisories/25215
secunia.com/secunia_research/2007-53/advisory/
www.securityfocus.com/bid/24983
www.securitytracker.com/id?1018545
www.securitytracker.com/id?1018546
www.securitytracker.com/id?1018547
www.symantec.com/avcenter/security/Content/2007.08.09.html
www.vupen.com/english/advisories/2007/2822
exchange.xforce.ibmcloud.com/vulnerabilities/35944