Vulnerability CVE-2009-3104


Published: 2009-09-08   Modified: 2012-02-13

Description:
Unspecified vulnerability in Symantec Norton AntiVirus 2005 through 2008; Norton Internet Security 2005 through 2008; AntiVirus Corporate Edition 9.0 before MR7, 10.0, 10.1 before MR8, and 10.2 before MR3; and Client Security 2.0 before MR7, 3.0, and 3.1 before MR8; when Internet Email Scanning is installed and enabled, allows remote attackers to cause a denial of service (CPU consumption and persistent connection loss) via unknown attack vectors.

CVSS2 => (AV:N/AC:M/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.3/10
2.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial
Affected software
Symantec -> Antivirus 
Symantec -> Client security 
Symantec -> Norton antivirus 
Symantec -> Norton internet security 

 References:
http://xforce.iss.net/xforce/xfdb/52820
http://www.vupen.com/english/advisories/2009/2449
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090826_01
http://www.securityfocus.com/bid/34670
http://secunia.com/advisories/36493
http://osvdb.org/57429

Copyright 2024, cxsecurity.com

 

Back to Top