Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2007-2955
HistoryAug 09, 2007 - 9:17 p.m.

CVE-2007-2955

2007-08-0921:17:00
NVD-CWE-Other
[email protected]
web.nvd.nist.gov
17
cve-2007-2955
input validation
navcomui.dll
activex controls
norton antivirus
internet security
system works

7.9 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.906 High

EPSS

Percentile

98.8%

JSON

Multiple unspecified “input validation error” vulnerabilities in multiple ActiveX controls in NavComUI.dll, as used in multiple Norton AntiVirus, Internet Security, and System Works products for 2006, allows remote attackers to execute arbitrary code via (1) the AnomalyList property to AxSysListView32 and (2) Anomaly property to AxSysListView32OAA.

Related

saint 4
checkpoint_advisories 1
prion 1
saint
saint
Symantec Norton NavComUI ActiveX control vulnerability
2007-09-20 00:00:00
Symantec Norton NavComUI ActiveX control vulnerability
2007-09-20 00:00:00
Symantec Norton NavComUI ActiveX control vulnerability
2007-09-20 00:00:00
checkpoint_advisories
checkpoint_advisories
Symantec Products ActiveX Control NavComUI.dll Code Execution (CVE-2007-2955)
2007-10-10 00:00:00
prion
prion
Input validation
2007-08-09 21:17:00

7.9 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.906 High

EPSS

Percentile

98.8%

JSON
Related for CVE-2007-2955
saint4checkpoint_advisories1prion1