Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2004-0920
HistoryNov 03, 2004 - 5:00 a.m.

CVE-2004-0920

2004-11-0305:00:00
mitre
web.nvd.nist.gov
26
symantec
norton antivirus
malicious code
detection avoidance
vulnerability

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

45.2%

JSON

Symantec Norton AntiVirus 2004, and earlier versions, allows a virus or other malicious code to avoid detection or cause a denial of service (application crash) using a filename containing an MS-DOS device name.

Affected configurations

Nvd
Node
symantecnorton_antivirusRange2.1ms_exchange
VendorProductVersionCPE
symantecnorton_antivirus*cpe:2.3:a:symantec:norton_antivirus:*:*:ms_exchange:*:*:*:*:*

Related

nvd 1
cvelist 1
securityvulns 1
nvd
nvd
CVE-2004-0920
2004-11-03 05:00:00
cvelist
cvelist
CVE-2004-0920
2004-10-06 04:00:00
securityvulns
securityvulns
[Full-Disclosure] iDEFENSE Security Advisory 10.05.04b: Symantec Norton AntiVirus Reserved Device Name Handling Vulnerability
2004-10-06 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

45.2%

JSON
Related for CVE-2004-0920
nvd1cvelist1securityvulns1