Search

Find a vulnerability

Search criteria

    6 vulnerabilities found for client_firewall by symantec

    CVE-2004-0375 (GCVE-0-2004-0375)

    Vulnerability from nvd – Published: 2004-05-05 04:00 – Updated: 2024-08-08 00:17
    VLAI
    Summary
    SYMNDIS.SYS in Symantec Norton Internet Security 2003 and 2004, Norton Personal Firewall 2003 and 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 and 1.1 allow remote attackers to cause a denial of service (infinite loop) via a TCP packet with (1) SACK option or (2) Alternate Checksum Data option followed by a length of zero.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Date Public
    2004-04-23 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:17:14.445Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1009379",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1009379"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.symantec.com/avcenter/security/Content/2004.04.20.html"
              },
              {
                "name": "1009380",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1009380"
              },
              {
                "name": "norton-firewalls-dos(15433)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15433"
              },
              {
                "name": "symantec-firewall-tcp-dos(15936)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15936"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.eeye.com/html/Research/Upcoming/20040309.html"
              },
              {
                "name": "20040423 EEYE: Symantec Multiple Firewall TCP Options Denial of Service",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=108275582432246\u0026w=2"
              },
              {
                "name": "9912",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/9912"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-04-23T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "SYMNDIS.SYS in Symantec Norton Internet Security 2003 and 2004, Norton Personal Firewall 2003 and 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 and 1.1 allow remote attackers to cause a denial of service (infinite loop) via a TCP packet with (1) SACK option or (2) Alternate Checksum Data option followed by a length of zero."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1009379",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1009379"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.symantec.com/avcenter/security/Content/2004.04.20.html"
            },
            {
              "name": "1009380",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1009380"
            },
            {
              "name": "norton-firewalls-dos(15433)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15433"
            },
            {
              "name": "symantec-firewall-tcp-dos(15936)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15936"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.eeye.com/html/Research/Upcoming/20040309.html"
            },
            {
              "name": "20040423 EEYE: Symantec Multiple Firewall TCP Options Denial of Service",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=108275582432246\u0026w=2"
            },
            {
              "name": "9912",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/9912"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0375",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "SYMNDIS.SYS in Symantec Norton Internet Security 2003 and 2004, Norton Personal Firewall 2003 and 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 and 1.1 allow remote attackers to cause a denial of service (infinite loop) via a TCP packet with (1) SACK option or (2) Alternate Checksum Data option followed by a length of zero."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1009379",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1009379"
                },
                {
                  "name": "http://www.symantec.com/avcenter/security/Content/2004.04.20.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.symantec.com/avcenter/security/Content/2004.04.20.html"
                },
                {
                  "name": "1009380",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1009380"
                },
                {
                  "name": "norton-firewalls-dos(15433)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15433"
                },
                {
                  "name": "symantec-firewall-tcp-dos(15936)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15936"
                },
                {
                  "name": "http://www.eeye.com/html/Research/Upcoming/20040309.html",
                  "refsource": "MISC",
                  "url": "http://www.eeye.com/html/Research/Upcoming/20040309.html"
                },
                {
                  "name": "20040423 EEYE: Symantec Multiple Firewall TCP Options Denial of Service",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=108275582432246\u0026w=2"
                },
                {
                  "name": "9912",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/9912"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0375",
        "datePublished": "2004-05-05T04:00:00.000Z",
        "dateReserved": "2004-03-29T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:17:14.445Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0445 (GCVE-0-2004-0445)

    Vulnerability from nvd – Published: 2004-05-20 04:00 – Updated: 2024-08-08 00:17
    VLAI
    Summary
    The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://securitytracker.com/id?1010146 vdb-entryx_refsource_SECTRACK
    http://securitytracker.com/id?1010145 vdb-entryx_refsource_SECTRACK
    http://www.ciac.org/ciac/bulletins/o-141.shtml third-party-advisorygovernment-resourcex_refsource_CIAC
    http://www.kb.cert.org/vuls/id/682110 third-party-advisoryx_refsource_CERT-VN
    http://www.osvdb.org/6100 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://securityresponse.symantec.com/avcenter/sec… x_refsource_CONFIRM
    http://lists.grok.org.uk/pipermail/full-disclosur… mailing-listx_refsource_FULLDISC
    http://securitytracker.com/id?1010144 vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/11066 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/bid/10336 vdb-entryx_refsource_BID
    Date Public
    2004-05-12 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:17:14.975Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1010146",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010146"
              },
              {
                "name": "1010145",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010145"
              },
              {
                "name": "O-141",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
              },
              {
                "name": "VU#682110",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/682110"
              },
              {
                "name": "6100",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/6100"
              },
              {
                "name": "symantec-firewall-dns-dos(16132)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16132"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
              },
              {
                "name": "20040512 EEYE: Symantec Multiple Firewall DNS Response Denial-of-Service",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021359.html"
              },
              {
                "name": "1010144",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010144"
              },
              {
                "name": "11066",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/11066"
              },
              {
                "name": "10336",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10336"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-05-12T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1010146",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010146"
            },
            {
              "name": "1010145",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010145"
            },
            {
              "name": "O-141",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
            },
            {
              "name": "VU#682110",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/682110"
            },
            {
              "name": "6100",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/6100"
            },
            {
              "name": "symantec-firewall-dns-dos(16132)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16132"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
            },
            {
              "name": "20040512 EEYE: Symantec Multiple Firewall DNS Response Denial-of-Service",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021359.html"
            },
            {
              "name": "1010144",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010144"
            },
            {
              "name": "11066",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/11066"
            },
            {
              "name": "10336",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10336"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0445",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1010146",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010146"
                },
                {
                  "name": "1010145",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010145"
                },
                {
                  "name": "O-141",
                  "refsource": "CIAC",
                  "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
                },
                {
                  "name": "VU#682110",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/682110"
                },
                {
                  "name": "6100",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/6100"
                },
                {
                  "name": "symantec-firewall-dns-dos(16132)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16132"
                },
                {
                  "name": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html",
                  "refsource": "CONFIRM",
                  "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
                },
                {
                  "name": "20040512 EEYE: Symantec Multiple Firewall DNS Response Denial-of-Service",
                  "refsource": "FULLDISC",
                  "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021359.html"
                },
                {
                  "name": "1010144",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010144"
                },
                {
                  "name": "11066",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/11066"
                },
                {
                  "name": "10336",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10336"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0445",
        "datePublished": "2004-05-20T04:00:00.000Z",
        "dateReserved": "2004-05-04T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:17:14.975Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0444 (GCVE-0-2004-0444)

    Vulnerability from nvd – Published: 2004-05-20 04:00 – Updated: 2024-08-08 00:17
    VLAI
    Summary
    Multiple vulnerabilities in SYMDNS.SYS for Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allow remote attackers to cause a denial of service or execute arbitrary code via (1) a manipulated length byte in the first-level decoding routine for NetBIOS Name Service (NBNS) that modifies an index variable and leads to a stack-based buffer overflow, (2) a heap-based corruption problem in an NBNS response that is missing certain RR fields, and (3) a stack-based buffer overflow in the DNS component via a Resource Record (RR) with a long canonical name (CNAME) field composed of many smaller components.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/6099 vdb-entryx_refsource_OSVDB
    http://www.kb.cert.org/vuls/id/634414 third-party-advisoryx_refsource_CERT-VN
    http://securitytracker.com/id?1010146 vdb-entryx_refsource_SECTRACK
    http://securitytracker.com/id?1010145 vdb-entryx_refsource_SECTRACK
    http://www.kb.cert.org/vuls/id/637318 third-party-advisoryx_refsource_CERT-VN
    http://www.securityfocus.com/bid/10335 vdb-entryx_refsource_BID
    http://www.ciac.org/ciac/bulletins/o-141.shtml third-party-advisorygovernment-resourcex_refsource_CIAC
    http://lists.grok.org.uk/pipermail/full-disclosur… mailing-listx_refsource_FULLDISC
    http://www.kb.cert.org/vuls/id/294998 third-party-advisoryx_refsource_CERT-VN
    http://www.securityfocus.com/bid/10333 vdb-entryx_refsource_BID
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://lists.grok.org.uk/pipermail/full-disclosur… mailing-listx_refsource_FULLDISC
    http://www.osvdb.org/6101 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/6102 vdb-entryx_refsource_OSVDB
    http://securityresponse.symantec.com/avcenter/sec… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://securitytracker.com/id?1010144 vdb-entryx_refsource_SECTRACK
    http://lists.grok.org.uk/pipermail/full-disclosur… mailing-listx_refsource_FULLDISC
    http://www.securityfocus.com/bid/10334 vdb-entryx_refsource_BID
    http://secunia.com/advisories/11066 third-party-advisoryx_refsource_SECUNIA
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2004-05-12 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:17:14.967Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "6099",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/6099"
              },
              {
                "name": "VU#634414",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/634414"
              },
              {
                "name": "1010146",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010146"
              },
              {
                "name": "1010145",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010145"
              },
              {
                "name": "VU#637318",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/637318"
              },
              {
                "name": "10335",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10335"
              },
              {
                "name": "O-141",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
              },
              {
                "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Processing Stack Overflow",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021360.html"
              },
              {
                "name": "VU#294998",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/294998"
              },
              {
                "name": "10333",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10333"
              },
              {
                "name": "symantec-nbns-response-bo(16134)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16134"
              },
              {
                "name": "20040512 EEYE: Symantec Multiple Firewall Remote DNS KERNEL Overflow",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021361.html"
              },
              {
                "name": "6101",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/6101"
              },
              {
                "name": "6102",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/6102"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
              },
              {
                "name": "symantec-dns-response-bo(16137)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16137"
              },
              {
                "name": "1010144",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010144"
              },
              {
                "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Remote Heap Corruption",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021362.html"
              },
              {
                "name": "10334",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10334"
              },
              {
                "name": "11066",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/11066"
              },
              {
                "name": "symantec-firewalls-nbns-bo(16135)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16135"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-05-12T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple vulnerabilities in SYMDNS.SYS for Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allow remote attackers to cause a denial of service or execute arbitrary code via (1) a manipulated length byte in the first-level decoding routine for NetBIOS Name Service (NBNS) that modifies an index variable and leads to a stack-based buffer overflow, (2) a heap-based corruption problem in an NBNS response that is missing certain RR fields, and (3) a stack-based buffer overflow in the DNS component via a Resource Record (RR) with a long canonical name (CNAME) field composed of many smaller components."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "6099",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/6099"
            },
            {
              "name": "VU#634414",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/634414"
            },
            {
              "name": "1010146",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010146"
            },
            {
              "name": "1010145",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010145"
            },
            {
              "name": "VU#637318",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/637318"
            },
            {
              "name": "10335",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10335"
            },
            {
              "name": "O-141",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
            },
            {
              "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Processing Stack Overflow",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021360.html"
            },
            {
              "name": "VU#294998",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/294998"
            },
            {
              "name": "10333",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10333"
            },
            {
              "name": "symantec-nbns-response-bo(16134)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16134"
            },
            {
              "name": "20040512 EEYE: Symantec Multiple Firewall Remote DNS KERNEL Overflow",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021361.html"
            },
            {
              "name": "6101",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/6101"
            },
            {
              "name": "6102",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/6102"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
            },
            {
              "name": "symantec-dns-response-bo(16137)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16137"
            },
            {
              "name": "1010144",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010144"
            },
            {
              "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Remote Heap Corruption",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021362.html"
            },
            {
              "name": "10334",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10334"
            },
            {
              "name": "11066",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/11066"
            },
            {
              "name": "symantec-firewalls-nbns-bo(16135)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16135"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0444",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple vulnerabilities in SYMDNS.SYS for Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allow remote attackers to cause a denial of service or execute arbitrary code via (1) a manipulated length byte in the first-level decoding routine for NetBIOS Name Service (NBNS) that modifies an index variable and leads to a stack-based buffer overflow, (2) a heap-based corruption problem in an NBNS response that is missing certain RR fields, and (3) a stack-based buffer overflow in the DNS component via a Resource Record (RR) with a long canonical name (CNAME) field composed of many smaller components."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "6099",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/6099"
                },
                {
                  "name": "VU#634414",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/634414"
                },
                {
                  "name": "1010146",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010146"
                },
                {
                  "name": "1010145",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010145"
                },
                {
                  "name": "VU#637318",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/637318"
                },
                {
                  "name": "10335",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10335"
                },
                {
                  "name": "O-141",
                  "refsource": "CIAC",
                  "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
                },
                {
                  "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Processing Stack Overflow",
                  "refsource": "FULLDISC",
                  "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021360.html"
                },
                {
                  "name": "VU#294998",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/294998"
                },
                {
                  "name": "10333",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10333"
                },
                {
                  "name": "symantec-nbns-response-bo(16134)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16134"
                },
                {
                  "name": "20040512 EEYE: Symantec Multiple Firewall Remote DNS KERNEL Overflow",
                  "refsource": "FULLDISC",
                  "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021361.html"
                },
                {
                  "name": "6101",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/6101"
                },
                {
                  "name": "6102",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/6102"
                },
                {
                  "name": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html",
                  "refsource": "CONFIRM",
                  "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
                },
                {
                  "name": "symantec-dns-response-bo(16137)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16137"
                },
                {
                  "name": "1010144",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010144"
                },
                {
                  "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Remote Heap Corruption",
                  "refsource": "FULLDISC",
                  "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021362.html"
                },
                {
                  "name": "10334",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10334"
                },
                {
                  "name": "11066",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/11066"
                },
                {
                  "name": "symantec-firewalls-nbns-bo(16135)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16135"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0444",
        "datePublished": "2004-05-20T04:00:00.000Z",
        "dateReserved": "2004-05-04T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:17:14.967Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0445 (GCVE-0-2004-0445)

    Vulnerability from cvelistv5 – Published: 2004-05-20 04:00 – Updated: 2024-08-08 00:17
    VLAI
    Summary
    The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://securitytracker.com/id?1010146 vdb-entryx_refsource_SECTRACK
    http://securitytracker.com/id?1010145 vdb-entryx_refsource_SECTRACK
    http://www.ciac.org/ciac/bulletins/o-141.shtml third-party-advisorygovernment-resourcex_refsource_CIAC
    http://www.kb.cert.org/vuls/id/682110 third-party-advisoryx_refsource_CERT-VN
    http://www.osvdb.org/6100 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://securityresponse.symantec.com/avcenter/sec… x_refsource_CONFIRM
    http://lists.grok.org.uk/pipermail/full-disclosur… mailing-listx_refsource_FULLDISC
    http://securitytracker.com/id?1010144 vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/11066 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/bid/10336 vdb-entryx_refsource_BID
    Date Public
    2004-05-12 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:17:14.975Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1010146",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010146"
              },
              {
                "name": "1010145",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010145"
              },
              {
                "name": "O-141",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
              },
              {
                "name": "VU#682110",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/682110"
              },
              {
                "name": "6100",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/6100"
              },
              {
                "name": "symantec-firewall-dns-dos(16132)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16132"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
              },
              {
                "name": "20040512 EEYE: Symantec Multiple Firewall DNS Response Denial-of-Service",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021359.html"
              },
              {
                "name": "1010144",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010144"
              },
              {
                "name": "11066",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/11066"
              },
              {
                "name": "10336",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10336"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-05-12T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1010146",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010146"
            },
            {
              "name": "1010145",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010145"
            },
            {
              "name": "O-141",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
            },
            {
              "name": "VU#682110",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/682110"
            },
            {
              "name": "6100",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/6100"
            },
            {
              "name": "symantec-firewall-dns-dos(16132)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16132"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
            },
            {
              "name": "20040512 EEYE: Symantec Multiple Firewall DNS Response Denial-of-Service",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021359.html"
            },
            {
              "name": "1010144",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010144"
            },
            {
              "name": "11066",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/11066"
            },
            {
              "name": "10336",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10336"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0445",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1010146",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010146"
                },
                {
                  "name": "1010145",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010145"
                },
                {
                  "name": "O-141",
                  "refsource": "CIAC",
                  "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
                },
                {
                  "name": "VU#682110",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/682110"
                },
                {
                  "name": "6100",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/6100"
                },
                {
                  "name": "symantec-firewall-dns-dos(16132)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16132"
                },
                {
                  "name": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html",
                  "refsource": "CONFIRM",
                  "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
                },
                {
                  "name": "20040512 EEYE: Symantec Multiple Firewall DNS Response Denial-of-Service",
                  "refsource": "FULLDISC",
                  "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021359.html"
                },
                {
                  "name": "1010144",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010144"
                },
                {
                  "name": "11066",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/11066"
                },
                {
                  "name": "10336",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10336"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0445",
        "datePublished": "2004-05-20T04:00:00.000Z",
        "dateReserved": "2004-05-04T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:17:14.975Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0444 (GCVE-0-2004-0444)

    Vulnerability from cvelistv5 – Published: 2004-05-20 04:00 – Updated: 2024-08-08 00:17
    VLAI
    Summary
    Multiple vulnerabilities in SYMDNS.SYS for Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allow remote attackers to cause a denial of service or execute arbitrary code via (1) a manipulated length byte in the first-level decoding routine for NetBIOS Name Service (NBNS) that modifies an index variable and leads to a stack-based buffer overflow, (2) a heap-based corruption problem in an NBNS response that is missing certain RR fields, and (3) a stack-based buffer overflow in the DNS component via a Resource Record (RR) with a long canonical name (CNAME) field composed of many smaller components.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/6099 vdb-entryx_refsource_OSVDB
    http://www.kb.cert.org/vuls/id/634414 third-party-advisoryx_refsource_CERT-VN
    http://securitytracker.com/id?1010146 vdb-entryx_refsource_SECTRACK
    http://securitytracker.com/id?1010145 vdb-entryx_refsource_SECTRACK
    http://www.kb.cert.org/vuls/id/637318 third-party-advisoryx_refsource_CERT-VN
    http://www.securityfocus.com/bid/10335 vdb-entryx_refsource_BID
    http://www.ciac.org/ciac/bulletins/o-141.shtml third-party-advisorygovernment-resourcex_refsource_CIAC
    http://lists.grok.org.uk/pipermail/full-disclosur… mailing-listx_refsource_FULLDISC
    http://www.kb.cert.org/vuls/id/294998 third-party-advisoryx_refsource_CERT-VN
    http://www.securityfocus.com/bid/10333 vdb-entryx_refsource_BID
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://lists.grok.org.uk/pipermail/full-disclosur… mailing-listx_refsource_FULLDISC
    http://www.osvdb.org/6101 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/6102 vdb-entryx_refsource_OSVDB
    http://securityresponse.symantec.com/avcenter/sec… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://securitytracker.com/id?1010144 vdb-entryx_refsource_SECTRACK
    http://lists.grok.org.uk/pipermail/full-disclosur… mailing-listx_refsource_FULLDISC
    http://www.securityfocus.com/bid/10334 vdb-entryx_refsource_BID
    http://secunia.com/advisories/11066 third-party-advisoryx_refsource_SECUNIA
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2004-05-12 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:17:14.967Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "6099",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/6099"
              },
              {
                "name": "VU#634414",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/634414"
              },
              {
                "name": "1010146",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010146"
              },
              {
                "name": "1010145",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010145"
              },
              {
                "name": "VU#637318",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/637318"
              },
              {
                "name": "10335",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10335"
              },
              {
                "name": "O-141",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
              },
              {
                "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Processing Stack Overflow",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021360.html"
              },
              {
                "name": "VU#294998",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/294998"
              },
              {
                "name": "10333",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10333"
              },
              {
                "name": "symantec-nbns-response-bo(16134)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16134"
              },
              {
                "name": "20040512 EEYE: Symantec Multiple Firewall Remote DNS KERNEL Overflow",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021361.html"
              },
              {
                "name": "6101",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/6101"
              },
              {
                "name": "6102",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/6102"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
              },
              {
                "name": "symantec-dns-response-bo(16137)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16137"
              },
              {
                "name": "1010144",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010144"
              },
              {
                "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Remote Heap Corruption",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021362.html"
              },
              {
                "name": "10334",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10334"
              },
              {
                "name": "11066",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/11066"
              },
              {
                "name": "symantec-firewalls-nbns-bo(16135)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16135"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-05-12T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple vulnerabilities in SYMDNS.SYS for Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allow remote attackers to cause a denial of service or execute arbitrary code via (1) a manipulated length byte in the first-level decoding routine for NetBIOS Name Service (NBNS) that modifies an index variable and leads to a stack-based buffer overflow, (2) a heap-based corruption problem in an NBNS response that is missing certain RR fields, and (3) a stack-based buffer overflow in the DNS component via a Resource Record (RR) with a long canonical name (CNAME) field composed of many smaller components."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "6099",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/6099"
            },
            {
              "name": "VU#634414",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/634414"
            },
            {
              "name": "1010146",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010146"
            },
            {
              "name": "1010145",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010145"
            },
            {
              "name": "VU#637318",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/637318"
            },
            {
              "name": "10335",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10335"
            },
            {
              "name": "O-141",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
            },
            {
              "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Processing Stack Overflow",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021360.html"
            },
            {
              "name": "VU#294998",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/294998"
            },
            {
              "name": "10333",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10333"
            },
            {
              "name": "symantec-nbns-response-bo(16134)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16134"
            },
            {
              "name": "20040512 EEYE: Symantec Multiple Firewall Remote DNS KERNEL Overflow",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021361.html"
            },
            {
              "name": "6101",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/6101"
            },
            {
              "name": "6102",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/6102"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
            },
            {
              "name": "symantec-dns-response-bo(16137)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16137"
            },
            {
              "name": "1010144",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010144"
            },
            {
              "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Remote Heap Corruption",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021362.html"
            },
            {
              "name": "10334",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10334"
            },
            {
              "name": "11066",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/11066"
            },
            {
              "name": "symantec-firewalls-nbns-bo(16135)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16135"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0444",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple vulnerabilities in SYMDNS.SYS for Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allow remote attackers to cause a denial of service or execute arbitrary code via (1) a manipulated length byte in the first-level decoding routine for NetBIOS Name Service (NBNS) that modifies an index variable and leads to a stack-based buffer overflow, (2) a heap-based corruption problem in an NBNS response that is missing certain RR fields, and (3) a stack-based buffer overflow in the DNS component via a Resource Record (RR) with a long canonical name (CNAME) field composed of many smaller components."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "6099",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/6099"
                },
                {
                  "name": "VU#634414",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/634414"
                },
                {
                  "name": "1010146",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010146"
                },
                {
                  "name": "1010145",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010145"
                },
                {
                  "name": "VU#637318",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/637318"
                },
                {
                  "name": "10335",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10335"
                },
                {
                  "name": "O-141",
                  "refsource": "CIAC",
                  "url": "http://www.ciac.org/ciac/bulletins/o-141.shtml"
                },
                {
                  "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Processing Stack Overflow",
                  "refsource": "FULLDISC",
                  "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021360.html"
                },
                {
                  "name": "VU#294998",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/294998"
                },
                {
                  "name": "10333",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10333"
                },
                {
                  "name": "symantec-nbns-response-bo(16134)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16134"
                },
                {
                  "name": "20040512 EEYE: Symantec Multiple Firewall Remote DNS KERNEL Overflow",
                  "refsource": "FULLDISC",
                  "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021361.html"
                },
                {
                  "name": "6101",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/6101"
                },
                {
                  "name": "6102",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/6102"
                },
                {
                  "name": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html",
                  "refsource": "CONFIRM",
                  "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html"
                },
                {
                  "name": "symantec-dns-response-bo(16137)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16137"
                },
                {
                  "name": "1010144",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010144"
                },
                {
                  "name": "20040512 EEYE: Symantec Multiple Firewall NBNS Response Remote Heap Corruption",
                  "refsource": "FULLDISC",
                  "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021362.html"
                },
                {
                  "name": "10334",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10334"
                },
                {
                  "name": "11066",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/11066"
                },
                {
                  "name": "symantec-firewalls-nbns-bo(16135)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16135"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0444",
        "datePublished": "2004-05-20T04:00:00.000Z",
        "dateReserved": "2004-05-04T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:17:14.967Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0375 (GCVE-0-2004-0375)

    Vulnerability from cvelistv5 – Published: 2004-05-05 04:00 – Updated: 2024-08-08 00:17
    VLAI
    Summary
    SYMNDIS.SYS in Symantec Norton Internet Security 2003 and 2004, Norton Personal Firewall 2003 and 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 and 1.1 allow remote attackers to cause a denial of service (infinite loop) via a TCP packet with (1) SACK option or (2) Alternate Checksum Data option followed by a length of zero.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Date Public
    2004-04-23 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:17:14.445Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1009379",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1009379"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.symantec.com/avcenter/security/Content/2004.04.20.html"
              },
              {
                "name": "1009380",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1009380"
              },
              {
                "name": "norton-firewalls-dos(15433)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15433"
              },
              {
                "name": "symantec-firewall-tcp-dos(15936)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15936"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.eeye.com/html/Research/Upcoming/20040309.html"
              },
              {
                "name": "20040423 EEYE: Symantec Multiple Firewall TCP Options Denial of Service",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=108275582432246\u0026w=2"
              },
              {
                "name": "9912",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/9912"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-04-23T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "SYMNDIS.SYS in Symantec Norton Internet Security 2003 and 2004, Norton Personal Firewall 2003 and 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 and 1.1 allow remote attackers to cause a denial of service (infinite loop) via a TCP packet with (1) SACK option or (2) Alternate Checksum Data option followed by a length of zero."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1009379",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1009379"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.symantec.com/avcenter/security/Content/2004.04.20.html"
            },
            {
              "name": "1009380",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1009380"
            },
            {
              "name": "norton-firewalls-dos(15433)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15433"
            },
            {
              "name": "symantec-firewall-tcp-dos(15936)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15936"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.eeye.com/html/Research/Upcoming/20040309.html"
            },
            {
              "name": "20040423 EEYE: Symantec Multiple Firewall TCP Options Denial of Service",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=108275582432246\u0026w=2"
            },
            {
              "name": "9912",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/9912"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0375",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "SYMNDIS.SYS in Symantec Norton Internet Security 2003 and 2004, Norton Personal Firewall 2003 and 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 and 1.1 allow remote attackers to cause a denial of service (infinite loop) via a TCP packet with (1) SACK option or (2) Alternate Checksum Data option followed by a length of zero."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1009379",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1009379"
                },
                {
                  "name": "http://www.symantec.com/avcenter/security/Content/2004.04.20.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.symantec.com/avcenter/security/Content/2004.04.20.html"
                },
                {
                  "name": "1009380",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1009380"
                },
                {
                  "name": "norton-firewalls-dos(15433)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15433"
                },
                {
                  "name": "symantec-firewall-tcp-dos(15936)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15936"
                },
                {
                  "name": "http://www.eeye.com/html/Research/Upcoming/20040309.html",
                  "refsource": "MISC",
                  "url": "http://www.eeye.com/html/Research/Upcoming/20040309.html"
                },
                {
                  "name": "20040423 EEYE: Symantec Multiple Firewall TCP Options Denial of Service",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=108275582432246\u0026w=2"
                },
                {
                  "name": "9912",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/9912"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0375",
        "datePublished": "2004-05-05T04:00:00.000Z",
        "dateReserved": "2004-03-29T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:17:14.445Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }