Multiple Vulnerabilities in Symantec Norton Internet Security and Firewall Products
CVE-2004-0444

Currently unrated

Key Information:

Vendor: Symantec
Status: Norton Personal Firewall; Norton Internet Security; Client Security; Client Firewall
Vendor: CVE Published:; 7 July 2004

What is CVE-2004-0444?

Multiple vulnerabilities in SYMDNS.SYS components of Symantec Norton Internet Security and Firewall products may allow remote attackers to exploit denial of service conditions or execute arbitrary code. This can occur through manipulated length bytes during the NetBIOS Name Service (NBNS) decoding process, which may result in stack-based buffer overflow and the exploitation of heap corruption due to improperly formatted NBNS responses. Additionally, a particular attack vector involving excessively long canonical name fields in DNS responses further exacerbates these vulnerabilities, presenting significant security risks to users of the affected products.

References

http://www.osvdb.org/6099

vdb-entryx_refsource_OSVDB

http://www.kb.cert.org/vuls/id/634414

third-party-advisoryx_refsource_CERT-VN

http://securitytracker.com/id?1010146

vdb-entryx_refsource_SECTRACK

EPSS Score

58% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 7, 2004
Vulnerability Reserved
May 4, 2004