Buffer Overflow in Symantec Automated Support Assistant for Norton Products
CVE-2006-5403

Currently unrated

Key Information:

Vendor
Symantec
Status
Norton System Works
Norton Antivirus
Norton Internet Security
Automated Support Assistant
Vendor
CVE Published:
19 October 2006

Summary

A stack-based buffer overflow vulnerability exists in the ActiveX control of the Symantec Automated Support Assistant, utilized by various Norton products. This flaw enables user-assisted remote attackers to potentially execute arbitrary code or cause a denial of service through unspecified methods. Affected installations of Norton AntiVirus, Internet Security, and System Works (2005 and 2006) may be at risk, highlighting the importance of timely updates and security measures to mitigate these threats.

References

http://securitytracker.com/id?1016988
vdb-entryx_refsource_SECTRACK
http://securitytracker.com/id?1016991
vdb-entryx_refsource_SECTRACK
http://securityresponse.symantec.com/avcenter/security/Co...
x_refsource_CONFIRM

EPSS Score

23% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.