Vulnerability Details CVE-2006-5403
Stack-based buffer overflow in an ActiveX control used in Symantec Automated Support Assistant, as used in Norton AntiVirus, Internet Security, and System Works 2005 and 2006, allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.233
EPSS Ranking 95.6%
CVSS Severity
CVSS v2 Score 5.1
References
- http://secunia.com/advisories/22228
- http://securityresponse.symantec.com/avcenter/security/Content/2006.10.05.html
- http://securitytracker.com/id?1016988
- http://securitytracker.com/id?1016989
- http://securitytracker.com/id?1016990
- http://securitytracker.com/id?1016991
- http://www.kb.cert.org/vuls/id/400601
- http://www.securityfocus.com/bid/20348
- http://www.vupen.com/english/advisories/2006/3929
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29363
- http://secunia.com/advisories/22228
- http://securityresponse.symantec.com/avcenter/security/Content/2006.10.05.html
- http://securitytracker.com/id?1016988
- http://securitytracker.com/id?1016989
- http://securitytracker.com/id?1016990
- http://securitytracker.com/id?1016991
- http://www.kb.cert.org/vuls/id/400601
- http://www.securityfocus.com/bid/20348
- http://www.vupen.com/english/advisories/2006/3929
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29363
Products affected by CVE-2006-5403
-
cpe:2.3:a:symantec:automated_support_assistant:-
-
cpe:2.3:a:symantec:norton_antivirus:-
-
cpe:2.3:a:symantec:norton_antivirus:1.0
-
cpe:2.3:a:symantec:norton_antivirus:10.0
-
cpe:2.3:a:symantec:norton_antivirus:10.0.0
-
cpe:2.3:a:symantec:norton_antivirus:10.0.0.359
-
cpe:2.3:a:symantec:norton_antivirus:10.0.1
-
cpe:2.3:a:symantec:norton_antivirus:10.0.1.1000
-
cpe:2.3:a:symantec:norton_antivirus:10.0.1.1007
-
cpe:2.3:a:symantec:norton_antivirus:10.0.1.1008
-
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2000
-
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2001
-
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2002
-
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2010
-
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2011
-
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2020
-
cpe:2.3:a:symantec:norton_antivirus:10.0.2.2021
-
cpe:2.3:a:symantec:norton_antivirus:10.1
-
cpe:2.3:a:symantec:norton_antivirus:2.0
-
cpe:2.3:a:symantec:norton_antivirus:2.1
-
cpe:2.3:a:symantec:norton_antivirus:2.18_build_83
-
cpe:2.3:a:symantec:norton_antivirus:2.5
-
cpe:2.3:a:symantec:norton_antivirus:2004
-
cpe:2.3:a:symantec:norton_antivirus:5.0
-
cpe:2.3:a:symantec:norton_antivirus:8.0.1
-
cpe:2.3:a:symantec:norton_antivirus:8.0.1.501
-
cpe:2.3:a:symantec:norton_antivirus:8.01.434
-
cpe:2.3:a:symantec:norton_antivirus:8.01.437
-
cpe:2.3:a:symantec:norton_antivirus:8.01.446
-
cpe:2.3:a:symantec:norton_antivirus:8.01.457
-
cpe:2.3:a:symantec:norton_antivirus:8.01.460
-
cpe:2.3:a:symantec:norton_antivirus:8.01.464
-
cpe:2.3:a:symantec:norton_antivirus:8.01.471
-
cpe:2.3:a:symantec:norton_antivirus:8.1
-
cpe:2.3:a:symantec:norton_antivirus:8.1.0.825a
-
cpe:2.3:a:symantec:norton_antivirus:8.1.1
-
cpe:2.3:a:symantec:norton_antivirus:8.1.1.319
-
cpe:2.3:a:symantec:norton_antivirus:8.1.1.323
-
cpe:2.3:a:symantec:norton_antivirus:8.1.1.329
-
cpe:2.3:a:symantec:norton_antivirus:8.1.1.366
-
cpe:2.3:a:symantec:norton_antivirus:8.1.1.377
-
cpe:2.3:a:symantec:norton_antivirus:8.1.1_build8.1.1.314a
-
cpe:2.3:a:symantec:norton_antivirus:9.0
-
cpe:2.3:a:symantec:norton_antivirus:9.0.0
-
cpe:2.3:a:symantec:norton_antivirus:9.0.0.338
-
cpe:2.3:a:symantec:norton_antivirus:9.0.1
-
cpe:2.3:a:symantec:norton_antivirus:9.0.1.1.1000
-
cpe:2.3:a:symantec:norton_antivirus:9.0.1.1000
-
cpe:2.3:a:symantec:norton_antivirus:9.0.2
-
cpe:2.3:a:symantec:norton_antivirus:9.0.2.1000
-
cpe:2.3:a:symantec:norton_antivirus:9.0.3
-
cpe:2.3:a:symantec:norton_antivirus:9.0.3.1000
-
cpe:2.3:a:symantec:norton_antivirus:9.0.4
-
cpe:2.3:a:symantec:norton_antivirus:9.0.5
-
cpe:2.3:a:symantec:norton_antivirus:9.0.5.1100
-
cpe:2.3:a:symantec:norton_antivirus:9.0.6.1000
-
cpe:2.3:a:symantec:norton_internet_security:2006
-
cpe:2.3:a:symantec:norton_system_works:2005
-
cpe:2.3:a:symantec:norton_system_works:2006