CVE-2005-3270 — Norton Antivirus vulnerability

4 documents4 sources

Severity

7.2HIGHNVD

EPSS

0.3%

top 49.43%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Norton Antivirus

Timeline

PublishedOct 21

Latest updateMay 1

Description

Untrusted search path vulnerability in DiskMountNotify for Symantec Norton AntiVirus 9.0.3 allows local users to gain privileges by modifying the PATH to reference a malicious (1) ps or (2) grep file.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDsymantec/norton_antivirus9.0.3

🔴Vulnerability Details

GHSA

GHSA-v738-3658-fhrx: Untrusted search path vulnerability in DiskMountNotify for Symantec Norton AntiVirus 9↗2022-05-01

▶

CVEList

CVE-2005-3270: Untrusted search path vulnerability in DiskMountNotify for Symantec Norton AntiVirus 9↗2005-10-20

▶

💥Exploits & PoCs

Exploit-DB

GO-Global Windows Clients 3.1.0.3270 - Buffer Overflow (PoC)↗2005-11-02

▶