ID

VAR-199912-0077


CVE

CVE-1999-1004


TITLE

Norton Anti-Virus protection NAV2000 program POP server POProxy Buffer overflow vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-199912-055

DESCRIPTION

Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command. The vulnerability is caused by a large USER command

Trust: 0.99

sources: NVD: CVE-1999-1004 // VULHUB: VHN-985

AFFECTED PRODUCTS

vendor:symantecmodel:norton antivirusscope:eqversion:2000

Trust: 1.6

sources: CNNVD: CNNVD-199912-055 // NVD: CVE-1999-1004

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-1999-1004
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-199912-055
value: MEDIUM

Trust: 0.6

VULHUB: VHN-985
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-1999-1004
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-985
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-985 // CNNVD: CNNVD-199912-055 // NVD: CVE-1999-1004

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-1999-1004

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-199912-055

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-199912-055

EXTERNAL IDS

db:OSVDBid:6267

Trust: 1.7

db:NVDid:CVE-1999-1004

Trust: 1.7

db:CNNVDid:CNNVD-199912-055

Trust: 0.7

db:BUGTRAQid:19991220 NORTON EMAIL PROTECTION REMOTE OVERFLOW (ADDENDUM)

Trust: 0.6

db:BUGTRAQid:19991217 NAV2000 EMAIL PROTECTION DOS

Trust: 0.6

db:VULHUBid:VHN-985

Trust: 0.1

sources: VULHUB: VHN-985 // CNNVD: CNNVD-199912-055 // NVD: CVE-1999-1004

REFERENCES

url:http://www.securityfocus.com/archive/1/38970

Trust: 2.7

url:http://www.securityfocus.com/archive/1/39194

Trust: 2.7

url:http://www.osvdb.org/6267

Trust: 2.7

url:http://service1.symantec.com/support/nav.nsf/df0a595864594c86852567ac0063608c/6206f660a1f2516a882568660082c930?opendocument&highlight=0%2cpoproxy

Trust: 2.0

url:http://service1.symantec.com/support/nav.nsf/df0a595864594c86852567ac0063608c/6206f660a1f2516a882568660082c930?opendocument&highlight=0,poproxy

Trust: 0.7

sources: VULHUB: VHN-985 // CNNVD: CNNVD-199912-055 // NVD: CVE-1999-1004

SOURCES

db:VULHUBid:VHN-985
db:CNNVDid:CNNVD-199912-055
db:NVDid:CVE-1999-1004

LAST UPDATE DATE

2024-11-22T23:07:03.133000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-985date:2008-09-09T00:00:00
db:CNNVDid:CNNVD-199912-055date:2005-05-02T00:00:00
db:NVDid:CVE-1999-1004date:2024-11-20T23:30:02.993

SOURCES RELEASE DATE

db:VULHUBid:VHN-985date:1999-12-16T00:00:00
db:CNNVDid:CNNVD-199912-055date:1999-12-16T00:00:00
db:NVDid:CVE-1999-1004date:1999-12-16T05:00:00