Information Disclosure in Symantec Automated Support Assistant
CVE-2006-5404

Currently unrated

Key Information:

Vendor: Symantec
Status: Norton System Works; Norton Antivirus; Norton Internet Security; Automated Support Assistant
Vendor: CVE Published:; 19 October 2006

Summary

A vulnerability exists in the ActiveX control utilized by the Symantec Automated Support Assistant, which impacts several versions of Norton AntiVirus, Internet Security, and System Works. This flaw allows remote attackers, under specific conditions that require user interaction, to potentially access sensitive information. This risk is primarily exploited through website content or other user-assisted vectors, necessitating a review of security practices related to the affected products.

References

http://securitytracker.com/id?1016988

vdb-entryx_refsource_SECTRACK

http://securitytracker.com/id?1016991

vdb-entryx_refsource_SECTRACK

http://securityresponse.symantec.com/avcenter/security/Co...

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 19, 2006
Vulnerability Reserved
Oct 18, 2006