Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2003-0994
HistorySep 01, 2004 - 4:00 a.m.

CVE-2003-0994

2004-09-0104:00:00
mitre
web.nvd.nist.gov
33
symantec
liveupdate
gui
vulnerability
local users
privileges

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.6

Confidence

High

EPSS

0

Percentile

9.5%

JSON

The GUI functionality for an interactive session in Symantec LiveUpdate 1.70.x through 1.90.x, as used in Norton Internet Security 2001 through 2004, SystemWorks 2001 through 2004, and AntiVirus and Norton AntiVirus Pro 2001 through 2004, AntiVirus for Handhelds v3.0, allows local users to gain SYSTEM privileges.

Affected configurations

Nvd
Node
symantecnorton_antivirusMatch2.1ms_exchange
OR
symantecnorton_antivirusMatch2001
OR
symantecnorton_antivirusMatch2001pro
OR
symantecnorton_antivirusMatch2002
OR
symantecnorton_antivirusMatch2002pro
OR
symantecnorton_antivirusMatch2003
OR
symantecnorton_antivirusMatch2003pro
OR
symantecnorton_antivirusMatch2004pro
OR
symantecnorton_antivirusMatchv3.0handhelds
OR
symantecnorton_internet_securityMatch2001
OR
symantecnorton_internet_securityMatch2001pro
OR
symantecnorton_internet_securityMatch2002
OR
symantecnorton_internet_securityMatch2002pro
OR
symantecnorton_internet_securityMatch2003
OR
symantecnorton_internet_securityMatch2003pro
OR
symantecnorton_internet_securityMatch2004
OR
symantecnorton_internet_securityMatch2004pro
OR
symantecnorton_system_worksMatch2001
OR
symantecnorton_system_worksMatch2002
OR
symantecnorton_system_worksMatch2003
OR
symantecnorton_system_worksMatch2004
OR
symantecwindows_liveupdateMatch1.70.x
OR
symantecwindows_liveupdateMatch1.90.x
VendorProductVersionCPE
symantecnorton_antivirus2.1cpe:2.3:a:symantec:norton_antivirus:2.1:*:ms_exchange:*:*:*:*:*
symantecnorton_antivirus2001cpe:2.3:a:symantec:norton_antivirus:2001:*:*:*:*:*:*:*
symantecnorton_antivirus2001cpe:2.3:a:symantec:norton_antivirus:2001:*:pro:*:*:*:*:*
symantecnorton_antivirus2002cpe:2.3:a:symantec:norton_antivirus:2002:*:*:*:*:*:*:*
symantecnorton_antivirus2002cpe:2.3:a:symantec:norton_antivirus:2002:*:pro:*:*:*:*:*
symantecnorton_antivirus2003cpe:2.3:a:symantec:norton_antivirus:2003:*:*:*:*:*:*:*
symantecnorton_antivirus2003cpe:2.3:a:symantec:norton_antivirus:2003:*:pro:*:*:*:*:*
symantecnorton_antivirus2004cpe:2.3:a:symantec:norton_antivirus:2004:*:pro:*:*:*:*:*
symantecnorton_antivirusv3.0cpe:2.3:a:symantec:norton_antivirus:v3.0:*:handhelds:*:*:*:*:*
symantecnorton_internet_security2001cpe:2.3:a:symantec:norton_internet_security:2001:*:*:*:*:*:*:*
Rows per page:
1-10 of 231

Related

kaspersky 1
securityvulns 1
cvelist 1
nvd 1
kaspersky
kaspersky
KLA10355 LPE vulnerability in Symantec
2004-02-03 00:00:00
securityvulns
securityvulns
SRT2004-01-9-1022 - Symantec LiveUpdate allows local users to become SYSTEM
2004-01-12 00:00:00
cvelist
cvelist
CVE-2003-0994
2004-09-01 04:00:00
nvd
nvd
CVE-2003-0994
2004-02-03 05:00:00

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.6

Confidence

High

EPSS

0

Percentile

9.5%

JSON
Related for CVE-2003-0994
kaspersky1securityvulns1cvelist1nvd1