CVE-2004-0445

Currently unrated

Key Information:

Vendor: Symantec
Status: Norton Personal Firewall; Norton Internet Security; Client Security; Client Firewall
Vendor: CVE Published:; 7 July 2004

Summary

The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself.

References

http://securitytracker.com/id?1010146

vdb-entryx_refsource_SECTRACK

http://securitytracker.com/id?1010145

vdb-entryx_refsource_SECTRACK

http://www.ciac.org/ciac/bulletins/o-141.shtml

third-party-advisorygovernment-resourcex_refsource_CIAC

EPSS Score

90% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 7, 2004
Vulnerability Reserved
May 4, 2004