Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec antivirus - vulnerabilities and exploits
(subscribe to this query)
454
VMScore
CVE-2006-5403
Stack-based buffer overflow in an ActiveX control used in Symantec Automated Support Assistant, as used in Norton AntiVirus, Internet Security, and System Works 2005 and 2006, allows user-assisted remote malicious users to cause a denial of service (crash) and possibly execute ar...
Symantec Automated Support Assistant
Symantec Norton Antivirus
Symantec Norton Internet Security 2006
Symantec Norton System Works 2005
Symantec Norton System Works 2006
454
VMScore
CVE-2005-3217
Multiple interpretation error in unspecified versions of Symantec Antivirus allows remote malicious users to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as W...
Symantec Antivirus Scan Engine
445
VMScore
CVE-2010-3268
The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec Antivirus Corporate Edition 10.1.4.4010 on Windows 2000 SP4 and Symantec Endpoint P...
Intel Intel Alert Management System
Symantec Antivirus 10.1.4.4010
Symantec Endpoint Protection 11.0.1
Symantec Endpoint Protection 11.0.4
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 11.0.2
Symantec Endpoint Protection 11.0.3001
445
VMScore
CVE-2009-1432
Symantec Reporting Server, as used in Symantec AntiVirus (SAV) Corporate Edition 10.1 prior to 10.1 MR8 and 10.2 prior to 10.2 MR2, Symantec Client Security (SCS) prior to 3.1 MR8, and the Symantec Endpoint Protection Manager (SEPM) component in Symantec Endpoint Protection (SEP)...
Symantec Antivirus 10.1
Symantec Client Security 3.1
Symantec Endpoint Protection 11.0
Symantec Antivirus 10.2
445
VMScore
CVE-2006-0232
Symantec Scan Engine 5.0.0.24, and possibly other versions prior to 5.1.0.7, stores sensitive log and virus definition files under the web root with insufficient access control, which allows remote malicious users to obtain the information via direct requests.
Symantec Antivirus Scan Engine 5.0.0.24
445
VMScore
CVE-2005-0922
Unknown vulnerability in the Auto-Protect module in Symantec Norton AntiVirus 2004 and 2005, as also used in Internet Security 2004/2005 and System Works 2004/2005, allows malicious users to cause a denial of service (system hang or crash) by triggering a scan of a certain file t...
Symantec Norton Antivirus 2005
Symantec Norton Internet Security 2005
Symantec Norton Antivirus 2.1
Symantec Norton Internet Security 2004
Symantec Norton System Works 2004 Professional
Symantec Norton System Works 2005 Premier
445
VMScore
CVE-2004-2147
Unknown versions of Symantec Norton AntiVirus and Microsoft Outlook allow malicious users to cause a denial of service (crash) via malformed e-mail messages (1) without a body or (2) without a carriage return ("\n") separating the headers from the body.
Symantec Norton Antivirus Corporate 7.2
Symantec Norton Antivirus Corporate 7.51
Symantec Norton Antivirus Professional 2003
Symantec Norton Antivirus Corporate 7.60.build 926
Symantec Norton Antivirus Corporate 7.61
Symantec Norton Antivirus Corporate 8.0
Symantec Norton Antivirus Professional 2001
Symantec Norton Antivirus 2.1
Symantec Norton Antivirus 2001
Symantec Norton Antivirus 2002
Symantec Norton Antivirus 2003
Symantec Norton Antivirus Corporate 7.0
Symantec Norton Antivirus Corporate 7.5
Symantec Norton Antivirus Corporate 7.6
Symantec Norton Antivirus Professional 2002
Symantec Norton Antivirus Professional 2004
445
VMScore
CVE-2004-0920
Symantec Norton AntiVirus 2004, and previous versions versions, allows a virus or other malicious code to avoid detection or cause a denial of service (application crash) using a filename containing an MS-DOS device name.
Symantec Norton Antivirus
445
VMScore
CVE-2002-0485
Norton Anti-Virus (NAV) allows remote malicious users to bypass content filtering via attachments whose Content-Type and Content-Disposition headers are mixed upper and lower case, which is ignored by some mail clients.
Symantec Norton Antivirus
445
VMScore
CVE-2002-0344
Symantec LiveUpdate 1.5 and previous versions in Norton Antivirus stores usernames and passwords for a local LiveUpdate server in cleartext in the registry, which may allow remote malicious users to impersonate the LiveUpdate server.
Symantec Liveupdate
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »