CVE-2004-0363

Name of the Vulnerable Software and Affected Versions Norton Internet Security 2004

Description The issue is related to a stack-based buffer overflow in the SymSpamHelper ActiveX component. This occurs when a long parameter is passed to the LaunchCustomRuleWizard method, allowing remote attackers to execute arbitrary code.

Recommendations For Norton Internet Security 2004, consider disabling the LaunchCustomRuleWizard method in the SymSpamHelper ActiveX component as a temporary workaround until a patch is available. Restrict access to the symspam.dll component to minimize the risk of exploitation.