1. Home
  2. CVE Database
  3. CVE-2006-5403
MEDIUM · 5.1

CVE-2006-5403

Stack-based buffer overflow in an ActiveX control used in Symantec Automated Support Assistant, as used in Norton AntiVirus, Internet Security, and System Works 2005 and 2006, allows user-assisted rem...

Vulnerability Description

Stack-based buffer overflow in an ActiveX control used in Symantec Automated Support Assistant, as used in Norton AntiVirus, Internet Security, and System Works 2005 and 2006, allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

CVSS Score

5.1

MEDIUM

AV:N/AC:H/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
SymantecAutomated Support AssistantAll versions
SymantecNorton AntivirusAll versions
SymantecNorton Internet Security2006
SymantecNorton System Works2005

References

FAQ

What is CVE-2006-5403?

CVE-2006-5403 is a vulnerability with a CVSS score of 5.1 (MEDIUM). Stack-based buffer overflow in an ActiveX control used in Symantec Automated Support Assistant, as used in Norton AntiVirus, Internet Security, and System Works 2005 and 2006, allows user-assisted rem...

How severe is CVE-2006-5403?

CVE-2006-5403 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-5403?

Check the references section above for vendor advisories and patch information. Affected products include: Symantec Automated Support Assistant, Symantec Norton Antivirus, Symantec Norton Internet Security, Symantec Norton System Works.