CVE-2003-0994

3 documents3 sources

Severity

7.2HIGH

EPSS

0.1%

top 77.29%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Norton Antivirus Symantec Norton Internet Security Symantec Norton System Works +1 more

Timeline

PublishedFeb 3

Latest updateApr 29

Description

The GUI functionality for an interactive session in Symantec LiveUpdate 1.70.x through 1.90.x, as used in Norton Internet Security 2001 through 2004, SystemWorks 2001 through 2004, and AntiVirus and Norton AntiVirus Pro 2001 through 2004, AntiVirus for Handhelds v3.0, allows local users to gain SYSTEM privileges.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages4 packages

▶NVDsymantec/norton_antivirus6 versions+5

▶NVDsymantec/norton_system_works4 versions+3

▶NVDsymantec/norton_internet_security4 versions+3

▶NVDsymantec/windows_liveupdate1.70.x, 1.90.x+1

🔴Vulnerability Details

GHSA

GHSA-vm8p-pj64-59hv: The GUI functionality for an interactive session in Symantec LiveUpdate 1↗2022-04-29

▶

CVEList

CVE-2003-0994: The GUI functionality for an interactive session in Symantec LiveUpdate 1↗2004-09-01

▶