Denial of Service in Symantec Norton AntiVirus 2004 and 2005
CVE-2005-0923

Currently unrated

Key Information:

Vendor: Symantec
Status: Norton Internet Security; Norton System Works; Norton Antivirus
Vendor: CVE Published:; 2 May 2005

Summary

A weakness in the SmartScan feature of the Auto-Protect module in Symantec Norton AntiVirus versions 2004 and 2005 enables attackers to induce a denial of service. This occurs through file renaming actions on a network share, which can lead to significant CPU consumption and potential system crashes. Users of Norton Internet Security and System Works for the same years are also at risk, emphasizing the importance of timely updates and enhanced security measures.

References

http://securityresponse.symantec.com/avcenter/security/Co...

x_refsource_CONFIRM

http://securitytracker.com/id?1013586

vdb-entryx_refsource_SECTRACK

http://www.kb.cert.org/vuls/id/713620

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability published
May 2, 2005
Vulnerability Reserved
Mar 29, 2005