Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
norton security vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2004-0363
Stack-based buffer overflow in the SymSpamHelper ActiveX component (symspam.dll) in Norton AntiSpam 2004, as used in Norton Internet Security 2004, allows remote malicious users to execute arbitrary code via a long parameter to the LaunchCustomRuleWizard method.
Symantec Norton Antispam 2004
1 EDB exploit
7.5
CVSSv2
CVE-2004-0364
The WrapNISUM ActiveX component (WrapUM.dll) in Norton Internet Security 2004 is marked safe for scripting, which allows remote malicious users to execute arbitrary programs via the LaunchURL method.
Symantec Norton Internet Security 2004
7.5
CVSSv2
CVE-2002-0663
Buffer overflow in HTTP Proxy for Symantec Norton Personal Internet Firewall 3.0.4.91 and Norton Internet Security 2001 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a large outgoing HTTP request.
Symantec Norton Internet Security 2001
Symantec Norton Personal Firewall 2001 3.0.4.91
7.2
CVSSv2
CVE-2007-5047
Norton Internet Security 2008 15.0.0.60 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the NtOpenSection kernel SSDT hook. NO...
Symantec Norton Internet Security 2008 15.0.0.60
7.2
CVSSv2
CVE-2006-3454
Multiple format string vulnerabilities in Symantec AntiVirus Corporate Edition 8.1 up to 10.0, and Client Security 1.x up to 3.0, allow local users to execute arbitrary code via format strings in (1) Tamper Protection and (2) Virus Alert Notification messages.
Symantec Client Security 2.0
Symantec Client Security 2.0.1
Symantec Norton Antivirus 9.0.2
Symantec Norton Antivirus 9.0
Symantec Client Security 1.0
Symantec Client Security 1.0.1
Symantec Client Security 2.0.4
Symantec Client Security 3.0
Symantec Client Security 1.1
Symantec Client Security 1.1.1
Symantec Norton Antivirus 10.0
Symantec Norton Antivirus 8.1
Symantec Norton Antivirus 9.0.1
Symantec Client Security 2.0.2
Symantec Client Security 2.0.3
7.2
CVSSv2
CVE-2003-0994
The GUI functionality for an interactive session in Symantec LiveUpdate 1.70.x up to and including 1.90.x, as used in Norton Internet Security 2001 through 2004, SystemWorks 2001 through 2004, and AntiVirus and Norton AntiVirus Pro 2001 through 2004, AntiVirus for Handhelds v3.0,...
Symantec Norton Antivirus 2001
Symantec Norton Antivirus 2002
Symantec Norton Internet Security 2002
Symantec Norton System Works 2003
Symantec Norton System Works 2004
Symantec Norton Antivirus 2003
Symantec Norton Internet Security 2003
Symantec Windows Liveupdate 1.70.x
Symantec Windows Liveupdate 1.90.x
Symantec Norton Antivirus 2.1
Symantec Norton Internet Security 2001
Symantec Norton System Works 2001
Symantec Norton System Works 2002
Symantec Norton Antivirus 2004
Symantec Norton Antivirus V3.0
Symantec Norton Internet Security 2004
7.1
CVSSv2
CVE-2016-5308
The Client Intrusion Detection System (CIDS) driver prior to 15.0.6 in Symantec Endpoint Protection (SEP) and prior to 15.1.2 in Norton Security allows remote malicious users to cause a denial of service (memory corruption and system crash) via a malformed Portable Executable (PE...
Symantec Client Intrusion Detection System
6.9
CVSSv2
CVE-2016-5311
A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client due t...
Symantec Endpoint Protection
Symantec Endpoint Protection Cloud
Symantec Norton 360
Symantec Norton Antivirus
Symantec Norton Antivirus With Backup
Symantec Norton Family
Symantec Norton Internet Security
Symantec Norton Security
Symantec Norton Security With Backup
6.9
CVSSv2
CVE-2007-3673
Symantec symtdi.sys prior to 7.0.0, as distributed in Symantec AntiVirus Corporate Edition 9 up to and including 10.1 and Client Security 2.0 up to and including 3.1, Norton AntiSpam 2005, and Norton AntiVirus, Internet Security, Personal Firewall, and System Works 2005 and 2006;...
Symantec Client Security 2.0
Symantec Norton Antivirus 9.0.0.338
Symantec Norton Antivirus 9.0.1.1.1000
Symantec Norton Antispam 2005
Symantec Norton Antivirus 10.0
Symantec Norton Antivirus 9.0.2.1000
Symantec Norton Antivirus 9.0.2
Symantec Norton Internet Security 2006
Symantec Norton Personal Firewall 2005
Symantec Norton Antivirus 9.0.5.1100
Symantec Norton Antivirus 9.0.5
Symantec Norton System Works 2006
Symantec Client Security 3.0
Symantec Client Security 3.1
Symantec Norton Antivirus 9.0.1.1000
Symantec Norton Antivirus 9.0.1
Symantec Norton Antivirus 9.0
Symantec Norton Internet Security 2005
Symantec Norton Antivirus 10.1
Symantec Norton Antivirus 2005
Symantec Norton Antivirus 2006
Symantec Norton Antivirus 9.0.3.1000
1 EDB exploit
6.8
CVSSv2
CVE-2018-18369
Norton Security (Windows client) before 22.16.3 and SEP SBE (Windows client) prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 & SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call...
Symantec Norton Security
Symantec Endpoint Protection Cloud Agent
Symantec Endpoint Protection Sep-12.1.7484.7002
Symantec Endpoint Protection Nis-22.15.2.22
Symantec Endpoint Protection Cloud
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »