2.6

CVE-2004-0445

EPSS 35.05%
Published 07.07.2004 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself.

Affected products Warnungen 0 Metrics 2 CWE 0 References 14

Data is provided by the National Vulnerability Database (NVD)

Symantec ≫ Client Firewall Version5.01

Symantec ≫ Client Firewall Version5.1.1

Symantec ≫ Client Security Version1.0

Symantec ≫ Client Security Version1.1

Symantec ≫ Client Security Version1.2

Symantec ≫ Client Security Version1.3

Symantec ≫ Client Security Version1.4

Symantec ≫ Client Security Version1.5

Symantec ≫ Client Security Version1.6

Symantec ≫ Client Security Version1.7

Symantec ≫ Client Security Version1.8

Symantec ≫ Client Security Version1.9

Symantec ≫ Client Security Version2.0

Symantec ≫ Norton Antispam Version2004

Symantec ≫ Norton Internet Security Version2002

Symantec ≫ Norton Internet Security Version2002 Editionpro

Symantec ≫ Norton Internet Security Version2003

Symantec ≫ Norton Internet Security Version2003 Editionpro

Symantec ≫ Norton Internet Security Version2004

Symantec ≫ Norton Internet Security Version2004 Editionpro

Symantec ≫ Norton Personal Firewall Version2002

Symantec ≫ Norton Personal Firewall Version2003

Symantec ≫ Norton Personal Firewall Version2004

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	35.05%	0.966

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	2.6	4.9	2.9	AV:N/AC:H/Au:N/C:N/I:N/A:P

http://secunia.com/advisories/11066

http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html

Patch

Vendor Advisory

http://securitytracker.com/id?1010144

http://securitytracker.com/id?1010145

http://securitytracker.com/id?1010146

http://www.ciac.org/ciac/bulletins/o-141.shtml

http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021359.html

http://www.kb.cert.org/vuls/id/682110

Patch

Third Party Advisory

US Government Resource

http://www.osvdb.org/6100

http://www.securityfocus.com/bid/10336

https://exchange.xforce.ibmcloud.com/vulnerabilities/16132

https://nvd.nist.gov/vuln/detail/CVE-2004-0445

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-0445

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-0445

EUVD