Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2010-3497
HistoryAug 22, 2012 - 10:00 a.m.

CVE-2010-3497

2012-08-2210:00:00
mitre
www.cve.org
5
symantec
norton antivirus
vulnerability
url processing
remote attackers
arbitrary code
microsoft
help and support center
malware
code execution
detection
late approach
vendor response
firewall

AI Score

7.8

Confidence

Low

EPSS

0.008

Percentile

81.8%

JSON

Symantec Norton AntiVirus 2011 does not properly interact with the processing of hcp:// URLs by the Microsoft Help and Support Center, which makes it easier for remote attackers to execute arbitrary code via malware that is correctly detected by this product, but with a detection approach that occurs too late to stop the code execution. NOTE: the researcher indicates that a vendor response was received, stating that this issue “falls into the work of our Firewall and not our AV (per our methodology of layers of defense).”

Related

openvas 2
nvd 1
prion 1
cve 1
openvas
openvas
Symantec Norton AntiVirus Protocol Handler (HCP) Code Execution Vulnerability
2012-10-03 00:00:00
Symantec Norton AntiVirus Protocol Handler (HCP) Code Execution Vulnerability
2012-10-03 00:00:00
nvd
nvd
CVE-2010-3497
2012-08-22 10:42:04
prion
prion
Code injection
2012-08-22 10:42:00
cve
cve
CVE-2010-3497
2012-08-22 10:42:04

AI Score

7.8

Confidence

Low

EPSS

0.008

Percentile

81.8%

JSON
Related for CVELIST:CVE-2010-3497
openvas2nvd1prion1cve1