Remote Code Execution Vulnerability in Symantec Norton SystemWorks
CVE-2006-0166

Currently unrated

Key Information:

Vendor: Symantec
Status: Norton System Works
Vendor: CVE Published:; 11 January 2006

What is CVE-2006-0166?

Symantec Norton SystemWorks and SystemWorks Premier 2005 and 2006 contain a vulnerability that manifests through the storage of temporary files in the hidden Norton Protected Recycle Bin NProtect directory. This design flaw permits remote attackers to conceal arbitrary files, rendering them invisible to virus scanners and other security applications. As a result, malicious content may evade detection, potentially leading to further exploitation.

References

http://www.vupen.com/english/advisories/2006/0143

vdb-entryx_refsource_VUPEN

http://securityresponse.symantec.com/avcenter/security/Co...

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/24061

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jan 11, 2006
Vulnerability Reserved
Jan 11, 2006