Lucene search

[email protected]CVE-2009-3104

HistorySep 08, 2009 - 10:30 p.m.

CVE-2009-3104

2009-09-0822:30:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2009-3104

symantec

norton

antivirus

internet security

vulnerability

denial of service

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.8%

JSON

Unspecified vulnerability in Symantec Norton AntiVirus 2005 through 2008; Norton Internet Security 2005 through 2008; AntiVirus Corporate Edition 9.0 before MR7, 10.0, 10.1 before MR8, and 10.2 before MR3; and Client Security 2.0 before MR7, 3.0, and 3.1 before MR8; when Internet Email Scanning is installed and enabled, allows remote attackers to cause a denial of service (CPU consumption and persistent connection loss) via unknown attack vectors.

Affected configurations

NVD

Node

symantecantivirusMatch9.0corporate

symantecantivirusMatch9.0mr6corporate

symantecantivirusMatch10.0corporate

symantecantivirusMatch10.0mr1corporate

symantecantivirusMatch10.0mr2corporate

symantecantivirusMatch10.1corporate

symantecantivirusMatch10.1mp1corporate

symantecantivirusMatch10.1mr4corporate

symantecantivirusMatch10.1mr5corporate

symantecantivirusMatch10.1mr6corporate

symantecantivirusMatch10.1mr7corporate

symantecantivirusMatch10.2corporate

symantecantivirusMatch10.2mr2corporate

symantecclient_securityMatch2.0

symantecclient_securityMatch2.0mr6

symantecclient_securityMatch3.0

symantecclient_securityMatch3.0mr1

symantecclient_securityMatch3.0mr2

symantecclient_securityMatch3.1

symantecclient_securityMatch3.1mr4

symantecclient_securityMatch3.1mr5

symantecclient_securityMatch3.1mr6

symantecclient_securityMatch3.1mr7

symantecnorton_antivirusMatch2005

symantecnorton_antivirusMatch2006

symantecnorton_antivirusMatch2007

symantecnorton_antivirusMatch2008

symantecnorton_internet_securityMatch2005

symantecnorton_internet_securityMatch2006

symantecnorton_internet_securityMatch2007

symantecnorton_internet_securityMatch2008

CPENameOperatorVersion
symantec:antivirussymantec antiviruseq9.0
symantec:antivirussymantec antiviruseq10.0
symantec:antivirussymantec antiviruseq10.1
symantec:antivirussymantec antiviruseq10.2
symantec:client_securitysymantec client securityeq2.0
symantec:client_securitysymantec client securityeq3.0
symantec:client_securitysymantec client securityeq3.1
symantec:norton_antivirussymantec norton antiviruseq2005
symantec:norton_antivirussymantec norton antiviruseq2006
symantec:norton_antivirussymantec norton antiviruseq2007

CPE	Name	Operator	Version
symantec:antivirus	symantec antivirus	eq	9.0
symantec:antivirus	symantec antivirus	eq	10.0
symantec:antivirus	symantec antivirus	eq	10.1
symantec:antivirus	symantec antivirus	eq	10.2
symantec:client_security	symantec client security	eq	2.0
symantec:client_security	symantec client security	eq	3.0
symantec:client_security	symantec client security	eq	3.1
symantec:norton_antivirus	symantec norton antivirus	eq	2005
symantec:norton_antivirus	symantec norton antivirus	eq	2006
symantec:norton_antivirus	symantec norton antivirus	eq	2007

Rows per page:

1-10 of 151

References

osvdb.org/57429

secunia.com/advisories/36493

www.securityfocus.com/bid/34670

www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090826_01

www.vupen.com/english/advisories/2009/2449

exchange.xforce.ibmcloud.com/vulnerabilities/52820

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.8%

JSON

Related for CVE-2009-3104

cvelist1 nvd1 prion1