CVE-2009-3104
Symantec Norton AntiVirus and Client Security - Denial of Service via Internet Email Scanning
Title source: llmDescription
Unspecified vulnerability in Symantec Norton AntiVirus 2005 through 2008; Norton Internet Security 2005 through 2008; AntiVirus Corporate Edition 9.0 before MR7, 10.0, 10.1 before MR8, and 10.2 before MR3; and Client Security 2.0 before MR7, 3.0, and 3.1 before MR8; when Internet Email Scanning is installed and enabled, allows remote attackers to cause a denial of service (CPU consumption and persistent connection loss) via unknown attack vectors.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/52820
Third Party Advisory x_refsource_confirm
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090826_01
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/36493
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2009/2449
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/57429
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/34670
Scores
EPSS
0.0159
EPSS Percentile
81.9%
Details
CWE
CWE-399
Status
published
Products (15)
symantec/antivirus
9.0 (2 CPE variants)
symantec/antivirus
10.0 (3 CPE variants)
symantec/antivirus
10.1 (6 CPE variants)
symantec/antivirus
10.2 (2 CPE variants)
symantec/client_security
2.0 (2 CPE variants)
symantec/client_security
3.0 (3 CPE variants)
symantec/client_security
3.1 (5 CPE variants)
symantec/norton_antivirus
2005
symantec/norton_antivirus
2006
symantec/norton_antivirus
2007
... and 5 more
Published
Sep 08, 2009
Tracked Since
Feb 18, 2026