CVE-2001-1126

Опубликовано: 05 окт. 2001

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Symantec LiveUpdate 1.4 through 1.6, and possibly later versions, allows remote attackers to cause a denial of service (flood) via DNS spoofing of the update.symantec.com site.

Ссылки

http://www.sarc.com/avcenter/security/Content/2001.10.05.html
http://www.securityfocus.com/archive/1/218717
Patch
Vendor Advisory
http://www.securityfocus.com/bid/3413
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7235
http://www.sarc.com/avcenter/security/Content/2001.10.05.html
http://www.securityfocus.com/archive/1/218717
Patch
Vendor Advisory
http://www.securityfocus.com/bid/3413
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7235

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:symantec:liveupdate:1.4:*:*:*:*:*:*:*

cpe:2.3:a:symantec:liveupdate:1.5:*:*:*:*:*:*:*

cpe:2.3:a:symantec:liveupdate:1.6:*:*:*:*:*:*:*

EPSS

Процентиль: 78%

0.01153

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-r25j-8gc3-5rrr

github

больше 3 лет назад