CVE-2005-1346 — Antivirus Scan Engine vulnerability

3 documents3 sources

Severity

2.6LOWNVD

EPSS

0.7%

top 27.85%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Antivirus Scan Engine Symantec Mail Security Symantec Norton Antivirus +4 more

Timeline

PublishedMay 2

Latest updateMay 1

Description

Multiple Symantec AntiVirus products, including Norton AntiVirus 2005 11.0.0, Web Security Web Security 3.0.1.72, Mail Security for SMTP 4.0.5.66, AntiVirus Scan Engine 4.3.7.27, SAV/Filter for Domino NT 3.1.1.87, and Mail Security for Exchange 4.5.4.743, when running on Windows, allows remote attackers to cause a denial of service (component crash) and avoid detection via a crafted RAR file.

CVSS vector

AV:N/AC:H/C:N/I:N/A:PExploitability: 4.9 | Impact: 2.9

Affected Packages7 packages

▶NVDsymantec/mail_security4.0.5.66, 4.5.4.743+1

▶NVDsymantec/antivirus_scan_engine4.3.7.27

▶NVDsymantec/norton_internet_security2005_contains_nav_11.0.0

▶NVDsymantec/web_security3.0.1.72

▶NVDsymantec/norton_antivirus2005_11.0.0

🔴Vulnerability Details

GHSA

GHSA-874q-8c44-qwx6: Multiple Symantec AntiVirus products, including Norton AntiVirus 2005 11↗2022-05-01

▶

CVEList

CVE-2005-1346: Multiple Symantec AntiVirus products, including Norton AntiVirus 2005 11↗2005-04-28

▶