CVE-2005-2017 — Norton Antivirus vulnerability

4 documents4 sources

Severity

10.0CRITICALNVD

CNA7.2

EPSS

0.4%

top 36.56%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Norton Antivirus

Timeline

PublishedAug 30

Latest updateMay 1

Description

Symantec AntiVirus 9 Corporate Edition allows local users to gain privileges via the "Scan for viruses" option, which launches a help window with raised privileges, a re-introduction of a vulnerability that was originally identified and addressed by CVE-2002-1540.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDsymantec/norton_antivirus9.0.1.1000

🔴Vulnerability Details

GHSA

GHSA-fx5q-wj25-89h6: Symantec AntiVirus 9 Corporate Edition allows local users to gain privileges via the "Scan for viruses" option, which launches a help window with rais↗2022-05-01

▶

CVEList

CVE-2005-2017: Symantec AntiVirus 9 Corporate Edition allows local users to gain privileges via the "Scan for viruses" option, which launches a help window with rais↗2005-08-29

▶

💬Community

HackerOne

Linux kernel: CVE-2017-6074: DCCP double-free vulnerability↗2019-08-27

▶