CVE-2006-5403
Symantec Automated Support Assistant - Stack-Based Buffer Overflow in ActiveX Control
Title source: llmDescription
Stack-based buffer overflow in an ActiveX control used in Symantec Automated Support Assistant, as used in Norton AntiVirus, Internet Security, and System Works 2005 and 2006, allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.
References (10)
Core 10
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1016988
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1016991
Various Sources x_refsource_confirm
http://securityresponse.symantec.com/avcenter/security/Content/2006.10.05.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1016989
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/3929
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/400601
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/29363
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/22228
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1016990
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/20348
Scores
EPSS
0.2140
EPSS Percentile
95.8%
Details
Status
published
Products (5)
symantec/automated_support_assistant
symantec/norton_antivirus
symantec/norton_internet_security
2006
symantec/norton_system_works
2005
symantec/norton_system_works
2006
Published
Oct 19, 2006
Tracked Since
Feb 18, 2026