CVE-2004-0920 — Norton Antivirus vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.7%

top 27.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Norton Antivirus

Timeline

PublishedNov 3

Latest updateApr 29

Description

Symantec Norton AntiVirus 2004, and earlier versions, allows a virus or other malicious code to avoid detection or cause a denial of service (application crash) using a filename containing an MS-DOS device name.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDsymantec/norton_antivirus2.1

🔴Vulnerability Details

GHSA

GHSA-9fw8-vjhf-78p8: Symantec Norton AntiVirus 2004, and earlier versions, allows a virus or other malicious code to avoid detection or cause a denial of service (applicat↗2022-04-29

▶

CVEList

CVE-2004-0920: Symantec Norton AntiVirus 2004, and earlier versions, allows a virus or other malicious code to avoid detection or cause a denial of service (applicat↗2004-10-06

▶