Denial of Service Vulnerability in Symantec AntiVirus and Client Security Products
CVE-2010-0106

Currently unrated

Key Information:

Vendor: Symantec
Status: Antivirus; Client Security; Endpoint Protection
Vendor: CVE Published:; 19 February 2010

What is CVE-2010-0106?

The on-demand scanning functionality in specific versions of Symantec AntiVirus and Client Security is vulnerable when Tamper protection is disabled. This flaw allows remote attackers to trigger specific events that can prevent users from accessing certain resources, leading to a denial of service and hindering the on-demand scanning capability of the affected products.

References

http://www.vupen.com/english/advisories/2010/0410

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/56354

vdb-entryx_refsource_XF

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

Timeline

Vulnerability published
Feb 19, 2010
Vulnerability Reserved
Dec 31, 2009