CVE-2004-0445

Current Description

The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself.

Basic Data

PublishedJuly 07, 2004
Last ModifiedJuly 11, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:H/Au:N/C:N/I:N/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityHIGH
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactNONE
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score2.6
SeverityLOW
Exploitability Score4.9
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationSymantecClient Firewall5.01*******
    2.3ApplicationSymantecClient Firewall5.1.1*******
    2.3ApplicationSymantecClient Security1.0*******
    2.3ApplicationSymantecClient Security1.1*******
    2.3ApplicationSymantecClient Security1.2*******
    2.3ApplicationSymantecClient Security1.3*******
    2.3ApplicationSymantecClient Security1.4*******
    2.3ApplicationSymantecClient Security1.5*******
    2.3ApplicationSymantecClient Security1.6*******
    2.3ApplicationSymantecClient Security1.7*******
    2.3ApplicationSymantecClient Security1.8*******
    2.3ApplicationSymantecClient Security1.9*******
    2.3ApplicationSymantecClient Security2.0*******
    2.3ApplicationSymantecNorton Antispam2004*******
    2.3ApplicationSymantecNorton Internet Security2002*******
    2.3ApplicationSymantecNorton Internet Security2002*pro*****
    2.3ApplicationSymantecNorton Internet Security2003*******
    2.3ApplicationSymantecNorton Internet Security2003*pro*****
    2.3ApplicationSymantecNorton Internet Security2004*******
    2.3ApplicationSymantecNorton Internet Security2004*pro*****
    2.3ApplicationSymantecNorton Personal Firewall2002*******
    2.3ApplicationSymantecNorton Personal Firewall2003*******
    2.3ApplicationSymantecNorton Personal Firewall2004*******

Vulnerable Software List

VendorProductVersions
Symantec Norton Antispam 2004
Symantec Client Firewall 5.01, 5.1.1
Symantec Norton Internet Security 2002, 2003, 2004
Symantec Client Security 1.0, 1.1, 1.2, 1.3, 1.4, 1.5, 1.6, 1.7, 1.8, 1.9, 2.0
Symantec Norton Personal Firewall 2002, 2003, 2004

References

NameSourceURLTags
20040512 EEYE: Symantec Multiple Firewall DNS Response Denial-of-Servicehttp://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021359.htmlFULLDISC
11066http://secunia.com/advisories/11066SECUNIA
http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.htmlhttp://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.htmlCONFIRMPATCH Vendor Advisory
1010144http://securitytracker.com/id?1010144SECTRACK
1010145http://securitytracker.com/id?1010145SECTRACK
1010146http://securitytracker.com/id?1010146SECTRACK
O-141http://www.ciac.org/ciac/bulletins/o-141.shtmlCIAC
VU#682110http://www.kb.cert.org/vuls/id/682110CERT-VNPATCH Third Party Advisory US Government Resource
6100http://www.osvdb.org/6100OSVDB
10336http://www.securityfocus.com/bid/10336BID
symantec-firewall-dns-dos(16132)https://exchange.xforce.ibmcloud.com/vulnerabilities/16132XF