PT-2009-5431 · Symantec · Norton Internet Security+4
Published
2009-09-08
·
Updated
2017-08-17
·
CVE-2009-3104
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions:
Symantec Norton AntiVirus versions 2005 through 2008
Symantec Norton Internet Security versions 2005 through 2008
Symantec AntiVirus Corporate Edition versions 9.0 through 10.2 before MR3 and MR7
Symantec Client Security versions 2.0 through 3.1 before MR7 and MR8
Description:
The issue allows remote attackers to cause a denial of service, resulting in CPU consumption and persistent connection loss, when Internet Email Scanning is installed and enabled. The attack vectors for this issue are unknown.
Recommendations:
For Symantec Norton AntiVirus versions 2005 through 2008, consider disabling Internet Email Scanning until a fix is available.
For Symantec Norton Internet Security versions 2005 through 2008, consider disabling Internet Email Scanning until a fix is available.
For Symantec AntiVirus Corporate Edition versions 9.0 through 10.2 before MR3 and MR7, consider disabling Internet Email Scanning until a fix is available.
For Symantec Client Security versions 2.0 through 3.1 before MR7 and MR8, consider disabling Internet Email Scanning until a fix is available.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Antivirus Corporate Edition
Client Security
Norton Antivirus
Norton Internet Security
Symantec Antivirus Corporate Edition