CVE-2004-0363

Currently unrated

Key Information:

Vendor: Symantec
Status: Norton Antispam
Vendor: CVE Published:; 15 April 2004

Summary

Stack-based buffer overflow in the SymSpamHelper ActiveX component (symspam.dll) in Norton AntiSpam 2004, as used in Norton Internet Security 2004, allows remote attackers to execute arbitrary code via a long parameter to the LaunchCustomRuleWizard method.

References

http://marc.info/?l=bugtraq&m=107980262324362&w=2

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/11169

third-party-advisoryx_refsource_SECUNIA

http://www.nextgenss.com/advisories/antispam.txt

x_refsource_MISC

EPSS Score

95% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 15, 2004
Vulnerability Reserved
Mar 19, 2004