CVE-2009-3104

CWE-3993 documents3 sources

Severity

4.3MEDIUM

EPSS

1.6%

top 18.34%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Antivirus Symantec Client Security Symantec Norton Antivirus +1 more

Timeline

PublishedSep 8

Latest updateMay 2

Description

Unspecified vulnerability in Symantec Norton AntiVirus 2005 through 2008; Norton Internet Security 2005 through 2008; AntiVirus Corporate Edition 9.0 before MR7, 10.0, 10.1 before MR8, and 10.2 before MR3; and Client Security 2.0 before MR7, 3.0, and 3.1 before MR8; when Internet Email Scanning is installed and enabled, allows remote attackers to cause a denial of service (CPU consumption and persistent connection loss) via unknown attack vectors.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages4 packages

▶NVDsymantec/norton_internet_security4 versions+3

▶NVDsymantec/norton_antivirus4 versions+3

▶NVDsymantec/client_security2.0, 3.0, 3.1+2

▶NVDsymantec/antivirus4 versions+3

🔴Vulnerability Details

GHSA

GHSA-j4gj-mw2c-mqx6: Unspecified vulnerability in Symantec Norton AntiVirus 2005 through 2008; Norton Internet Security 2005 through 2008; AntiVirus Corporate Edition 9↗2022-05-02

▶

CVEList

CVE-2009-3104: Unspecified vulnerability in Symantec Norton AntiVirus 2005 through 2008; Norton Internet Security 2005 through 2008; AntiVirus Corporate Edition 9↗2009-09-08

▶