Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2010-0106

The on-demand scanning in Symantec AntiVirus 10.0.x and 10.1.x before MR9, AntiVirus 10.2.x, and Client Security 3.0.x and 3.1.x before MR9, when Tamper protection is disabled, allows remote attackers to cause a denial of service (prevention of on-demand scanning) via "specific events" that prevent the user from having read access to unspecified resources.

Published

2010-02-19T17:30:00.660

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 1.9 (LOW)

CVSSv2 Vector

AV:L/AC:M/Au:N/C:N/I:N/A:P

Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

3.4

Impact Score

2.9

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	symantec	antivirus	10.0	Yes
Application	symantec	antivirus	10.0.1	Yes
Application	symantec	antivirus	10.0.1.1	Yes
Application	symantec	antivirus	10.0.2	Yes
Application	symantec	antivirus	10.0.2.1	Yes
Application	symantec	antivirus	10.0.2.2	Yes
Application	symantec	antivirus	10.0.3	Yes
Application	symantec	antivirus	10.0.4	Yes
Application	symantec	antivirus	10.0.5	Yes
Application	symantec	antivirus	10.0.6	Yes
Application	symantec	antivirus	10.0.7	Yes
Application	symantec	antivirus	10.0.8	Yes
Application	symantec	antivirus	10.0.9	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.1	Yes
Application	symantec	antivirus	10.1.0.1	Yes
Application	symantec	antivirus	10.1.4	Yes
Application	symantec	antivirus	10.1.4.1	Yes
Application	symantec	antivirus	10.1.5	Yes
Application	symantec	antivirus	10.1.5.1	Yes
Application	symantec	antivirus	10.1.6	Yes
Application	symantec	antivirus	10.1.6.1	Yes
Application	symantec	antivirus	10.1.7	Yes
Application	symantec	antivirus	10.2	Yes
Application	symantec	antivirus	10.2	Yes
Application	symantec	antivirus	10.2	Yes
Application	symantec	client_security	3.0	Yes
Application	symantec	client_security	3.0	Yes
Application	symantec	client_security	3.0	Yes
Application	symantec	client_security	3.0.0.359	Yes
Application	symantec	client_security	3.0.1.1000	Yes
Application	symantec	client_security	3.0.1.1007	Yes
Application	symantec	client_security	3.0.1.1008	Yes
Application	symantec	client_security	3.0.2	Yes
Application	symantec	client_security	3.0.2.2000	Yes
Application	symantec	client_security	3.0.2.2001	Yes
Application	symantec	client_security	3.0.2.2010	Yes
Application	symantec	client_security	3.0.2.2011	Yes
Application	symantec	client_security	3.0.2.2020	Yes
Application	symantec	client_security	3.0.2.2021	Yes
Application	symantec	client_security	3.1	Yes
Application	symantec	client_security	3.1	Yes
Application	symantec	client_security	3.1	Yes
Application	symantec	client_security	3.1	Yes
Application	symantec	client_security	3.1.0.396	Yes
Application	symantec	client_security	3.1.0.401	Yes
Application	symantec	client_security	3.1.394	Yes
Application	symantec	client_security	3.1.400	Yes
Application	symantec	client_security	3.1.401	Yes
Application	symantec	endpoint_protection	11.0	Yes

References

http://osvdb.org/62414 ([email protected])
http://secunia.com/advisories/38653 Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/38219 ([email protected])
http://www.securitytracker.com/id?1023621 ([email protected])
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100217_00 ([email protected])
http://www.vupen.com/english/advisories/2010/0410 Vendor Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/56354 ([email protected])
http://osvdb.org/62414 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/38653 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/38219 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id?1023621 (af854a3a-2127-422b-91ae-364da2661108)
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100217_00 (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2010/0410 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/56354 (af854a3a-2127-422b-91ae-364da2661108)