Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec antivirus - vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2010-3497
Symantec Norton AntiVirus 2011 does not properly interact with the processing of hcp:// URLs by the Microsoft Help and Support Center, which makes it easier for remote malicious users to execute arbitrary code via malware that is correctly detected by this product, but with a det...
Symantec Norton Antivirus 2011
6.4
CVSSv2
CVE-2006-0231
Symantec Scan Engine 5.0.0.24, and possibly other versions prior to 5.1.0.7, uses the same private DSA key for each installation, which allows remote malicious users to conduct man-in-the-middle attacks and decrypt communications.
Symantec Antivirus Scan Engine 5.0.0.24
6.4
CVSSv2
CVE-2003-1451
Buffer overflow in Symantec Norton AntiVirus 2002 allows remote malicious users to execute arbitrary code via an e-mail attachment with a compressed ZIP file that contains a file with a long filename.
Symantec Norton Antivirus 2002
6
CVSSv2
CVE-2007-5829
The Disk Mount scanner in Symantec AntiVirus for Macintosh 9.x and 10.x, Norton AntiVirus for Macintosh 10.0 and 10.1, and Norton Internet Security for Macintosh 3.x, uses a directory with weak permissions (group writable), which allows local admin users to gain root privileges b...
Symantec Norton Antivirus 9.0.2
Symantec Norton Antivirus 9.0.3
Symantec Norton Antivirus 10.1
Symantec Norton Antivirus 9.0.1
Symantec Norton Antivirus 9.0
Symantec Norton Internet Security 3.0
Symantec Norton Antivirus 10.0
6
CVSSv2
CVE-2007-3800
Unspecified vulnerability in the Real-time scanner (RTVScan) component in Symantec AntiVirus Corporate Edition 9.0 up to and including 10.1 and Client Security 2.0 up to and including 3.1, when the Notification Message window is enabled, allows local users to gain privileges via ...
Symantec Client Security
Symantec Norton Antivirus
Symantec Norton Antivirus 10.0
Symantec Norton Antivirus 9.0
Symantec Client Security 2.0
Symantec Client Security 2.1
5.1
CVSSv2
CVE-2006-5403
Stack-based buffer overflow in an ActiveX control used in Symantec Automated Support Assistant, as used in Norton AntiVirus, Internet Security, and System Works 2005 and 2006, allows user-assisted remote malicious users to cause a denial of service (crash) and possibly execute ar...
Symantec Automated Support Assistant
Symantec Norton Antivirus
Symantec Norton Internet Security 2006
Symantec Norton System Works 2005
Symantec Norton System Works 2006
5.1
CVSSv2
CVE-2005-3217
Multiple interpretation error in unspecified versions of Symantec Antivirus allows remote malicious users to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as W...
Symantec Antivirus Scan Engine
5
CVSSv2
CVE-2010-3268
The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec Antivirus Corporate Edition 10.1.4.4010 on Windows 2000 SP4 and Symantec Endpoint P...
Intel Intel Alert Management System
Symantec Antivirus 10.1.4.4010
Symantec Endpoint Protection 11.0.1
Symantec Endpoint Protection 11.0.4
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 11.0.2
Symantec Endpoint Protection 11.0.3001
5
CVSSv2
CVE-2009-1432
Symantec Reporting Server, as used in Symantec AntiVirus (SAV) Corporate Edition 10.1 prior to 10.1 MR8 and 10.2 prior to 10.2 MR2, Symantec Client Security (SCS) prior to 3.1 MR8, and the Symantec Endpoint Protection Manager (SEPM) component in Symantec Endpoint Protection (SEP)...
Symantec Antivirus 10.1
Symantec Client Security 3.1
Symantec Endpoint Protection 11.0
Symantec Antivirus 10.2
5
CVSSv2
CVE-2006-0232
Symantec Scan Engine 5.0.0.24, and possibly other versions prior to 5.1.0.7, stores sensitive log and virus definition files under the web root with insufficient access control, which allows remote malicious users to obtain the information via direct requests.
Symantec Antivirus Scan Engine 5.0.0.24
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »