Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Norton_antivirus
(Symantec)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 67 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2004-08-18 | CVE-2004-0487 | A certain ActiveX control in Symantec Norton AntiVirus 2004 allows remote attackers to cause a denial of service (resource consumption) and possibly execute arbitrary programs. | Norton_antivirus | N/A | ||
| 2003-12-31 | CVE-2003-1451 | Buffer overflow in Symantec Norton AntiVirus 2002 allows remote attackers to execute arbitrary code via an e-mail attachment with a compressed ZIP file that contains a file with a long filename. | Norton_antivirus | N/A | ||
| 2003-12-31 | CVE-2003-1310 | The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local users to gain privileges by overwriting memory locations via certain control codes (aka "Device Driver Attack"). | Norton_antivirus | N/A | ||
| 2004-02-03 | CVE-2003-0994 | The GUI functionality for an interactive session in Symantec LiveUpdate 1.70.x through 1.90.x, as used in Norton Internet Security 2001 through 2004, SystemWorks 2001 through 2004, and AntiVirus and Norton AntiVirus Pro 2001 through 2004, AntiVirus for Handhelds v3.0, allows local users to gain SYSTEM privileges. | Norton_antivirus, Norton_internet_security, Norton_system_works, Windows_liveupdate | N/A | ||
| 2002-12-31 | CVE-2002-2206 | The POP3 proxy service (POPROXY.EXE) in Norton AntiVirus 2001 allows local users to cause a denial of service (CPU consumption and crash) via a long username with multiple /localhost entries. | Norton_antivirus | N/A | ||
| 2003-03-31 | CVE-2002-1540 | The client for Symantec Norton AntiVirus Corporate Edition 7.5.x before 7.5.1 Build 62 and 7.6.x before 7.6.1 Build 35a runs winhlp32 with raised privileges, which allows local users to gain privileges by using certain features of winhlp32. | Norton_antivirus | N/A | ||
| 2000-06-14 | CVE-2000-0478 | In some cases, Norton Antivirus for Exchange (NavExchange) enters a "fail-open" state which allows viruses to pass through the server. | Norton_antivirus | N/A | ||
| 2000-06-14 | CVE-2000-0477 | Buffer overflow in Norton Antivirus for Exchange (NavExchange) allows remote attackers to cause a denial of service via a .zip file that contains long file names. | Norton_antivirus | N/A | ||
| 1999-12-22 | CVE-2000-0119 | The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection. | Virusscan, Norton_antivirus | N/A | ||
| 1999-04-09 | CVE-1999-1323 | Norton AntiVirus for Internet Email Gateways (NAVIEG) 1.0.1.7 and earlier, and Norton AntiVirus for MS Exchange (NAVMSE) 1.5 and earlier, store the administrator password in cleartext in (1) the navieg.ini file for NAVIEG, and (2) the ModifyPassword registry key in NAVMSE. | Norton_antivirus | N/A |