CVE-2004-0683

Symantec Norton AntiVirus <2003 - DoS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-0683. PoCs published by Bipin Gautam.

AI-analyzed exploit summary This exploit demonstrates a Denial of Service (DoS) vulnerability in Norton AntiVirus 2002/2003 by using a specially crafted compressed file containing the EICAR test string buried in numerous directories, causing 100% CPU usage during scanning.

Description

Symantec Norton AntiVirus 2002 and 2003 allows remote attackers to cause a denial of service (CPU consumption) via a compressed archive that contains a large number of directories.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Bipin Gautam · textdoswindows
https://www.exploit-db.com/exploits/312

This exploit demonstrates a Denial of Service (DoS) vulnerability in Norton AntiVirus 2002/2003 by using a specially crafted compressed file containing the EICAR test string buried in numerous directories, causing 100% CPU usage during scanning.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Symantec Norton AntiVirus 2002/2003 Professional Edition
No auth needed
Prerequisites: A compressed file with deeply nested directories containing the EICAR test string
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=108938579712894&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/16658

Scores

EPSS 0.0645
EPSS Percentile 92.9%

Details

Status published
Products (2)
symantec/norton_antivirus 2002
symantec/norton_antivirus 2003
Published Aug 06, 2004
Tracked Since Feb 18, 2026