Vulnerability Description
SYMNDIS.SYS in Symantec Norton Internet Security 2003 and 2004, Norton Personal Firewall 2003 and 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 and 1.1 allow remote attackers to cause a denial of service (infinite loop) via a TCP packet with (1) SACK option or (2) Alternate Checksum Data option followed by a length of zero.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Client Firewall | 5.01 |
| Symantec | Client Security | 1.0 |
| Symantec | Norton Internet Security | 2003 |
| Symantec | Norton Personal Firewall | 2003 |
References
- http://marc.info/?l=bugtraq&m=108275582432246&w=2
- http://securitytracker.com/id?1009379
- http://securitytracker.com/id?1009380
- http://www.eeye.com/html/Research/Upcoming/20040309.html
- http://www.securityfocus.com/bid/9912ExploitVendor Advisory
- http://www.symantec.com/avcenter/security/Content/2004.04.20.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15433
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15936
- http://marc.info/?l=bugtraq&m=108275582432246&w=2
- http://securitytracker.com/id?1009379
- http://securitytracker.com/id?1009380
- http://www.eeye.com/html/Research/Upcoming/20040309.html
- http://www.securityfocus.com/bid/9912ExploitVendor Advisory
- http://www.symantec.com/avcenter/security/Content/2004.04.20.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15433
FAQ
What is CVE-2004-0375?
CVE-2004-0375 is a vulnerability with a CVSS score of 5.0 (MEDIUM). SYMNDIS.SYS in Symantec Norton Internet Security 2003 and 2004, Norton Personal Firewall 2003 and 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 and 1.1 allow remote attackers to cause ...
How severe is CVE-2004-0375?
CVE-2004-0375 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0375?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Client Firewall, Symantec Client Security, Symantec Norton Internet Security, Symantec Norton Personal Firewall.