CVE-2004-0364

Опубликовано: 15 апр. 2004

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The WrapNISUM ActiveX component (WrapUM.dll) in Norton Internet Security 2004 is marked safe for scripting, which allows remote attackers to execute arbitrary programs via the LaunchURL method.

Ссылки

http://marc.info/?l=bugtraq&m=107970885922442&w=2
http://marc.info/?l=bugtraq&m=107980262324362&w=2
http://secunia.com/advisories/11168
http://www.kb.cert.org/vuls/id/549054
US Government Resource
http://www.nextgenss.com/advisories/nisrce.txt
Patch
Vendor Advisory
http://www.sarc.com/avcenter/security/Content/2004.03.19.html
http://www.securityfocus.com/bid/9915
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15538
http://marc.info/?l=bugtraq&m=107970885922442&w=2
http://marc.info/?l=bugtraq&m=107980262324362&w=2
http://secunia.com/advisories/11168
http://www.kb.cert.org/vuls/id/549054
US Government Resource
http://www.nextgenss.com/advisories/nisrce.txt
Patch
Vendor Advisory
http://www.sarc.com/avcenter/security/Content/2004.03.19.html
http://www.securityfocus.com/bid/9915
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15538

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:symantec:norton_internet_security:2004:*:*:*:*:*:*:*

cpe:2.3:a:symantec:norton_internet_security:2004:*:professional:*:*:*:*:*

EPSS

Процентиль: 86%

0.03034

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-v6wg-hp5f-hcpq

github

почти 4 года назад