Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2009-3104

Unspecified vulnerability in Symantec Norton AntiVirus 2005 through 2008; Norton Internet Security 2005 through 2008; AntiVirus Corporate Edition 9.0 before MR7, 10.0, 10.1 before MR8, and 10.2 before MR3; and Client Security 2.0 before MR7, 3.0, and 3.1 before MR8; when Internet Email Scanning is installed and enabled, allows remote attackers to cause a denial of service (CPU consumption and persistent connection loss) via unknown attack vectors.

Published

2009-09-08T22:30:00.530

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 4.3 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Primary
CWE-399

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	symantec	antivirus	9.0	Yes
Application	symantec	antivirus	9.0	Yes
Application	symantec	antivirus	10.0	Yes
Application	symantec	antivirus	10.0	Yes
Application	symantec	antivirus	10.0	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.2	Yes
Application	symantec	antivirus	10.2	Yes
Application	symantec	client_security	2.0	Yes
Application	symantec	client_security	2.0	Yes
Application	symantec	client_security	3.0	Yes
Application	symantec	client_security	3.0	Yes
Application	symantec	client_security	3.0	Yes
Application	symantec	client_security	3.1	Yes
Application	symantec	client_security	3.1	Yes
Application	symantec	client_security	3.1	Yes
Application	symantec	client_security	3.1	Yes
Application	symantec	client_security	3.1	Yes
Application	symantec	norton_antivirus	2005	Yes
Application	symantec	norton_antivirus	2006	Yes
Application	symantec	norton_antivirus	2007	Yes
Application	symantec	norton_antivirus	2008	Yes
Application	symantec	norton_internet_security	2005	Yes
Application	symantec	norton_internet_security	2006	Yes
Application	symantec	norton_internet_security	2007	Yes
Application	symantec	norton_internet_security	2008	Yes

References

http://osvdb.org/57429 ([email protected])
http://secunia.com/advisories/36493 Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/34670 ([email protected])
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090826_01 ([email protected])
http://www.vupen.com/english/advisories/2009/2449 Vendor Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/52820 ([email protected])
http://osvdb.org/57429 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36493 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/34670 (af854a3a-2127-422b-91ae-364da2661108)
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090826_01 (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/2449 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52820 (af854a3a-2127-422b-91ae-364da2661108)