CVE-2003-1451 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Norton Antivirus

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources

Severity

6.4MEDIUMNVD

EPSS

2.9%

top 13.71%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Norton Antivirus

Timeline

PublishedDec 31

Latest updateApr 29

Description

Buffer overflow in Symantec Norton AntiVirus 2002 allows remote attackers to execute arbitrary code via an e-mail attachment with a compressed ZIP file that contains a file with a long filename.

CVSS vector

AV:N/AC:L/C:P/I:P/A:NExploitability: 10.0 | Impact: 4.9

Affected Packages1 packages

▶NVDsymantec/norton_antivirus2002

🔴Vulnerability Details

GHSA

GHSA-7w6v-fp3h-4qv8: Buffer overflow in Symantec Norton AntiVirus 2002 allows remote attackers to execute arbitrary code via an e-mail attachment with a compressed ZIP fil↗2022-04-29

▶

CVEList

CVE-2003-1451: Buffer overflow in Symantec Norton AntiVirus 2002 allows remote attackers to execute arbitrary code via an e-mail attachment with a compressed ZIP fil↗2007-10-23

▶