CVE-2004-0364

Published: Apr 15, 2004Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

The WrapNISUM ActiveX component (WrapUM.dll) in Norton Internet Security 2004 is marked safe for scripting, which allows remote attackers to execute arbitrary programs via the LaunchURL method.

Affected (2)

Products: Symantec: Norton Internet Security

Symantec

1 product

Norton Internet Security

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Symantec Norton Internet Security	Version 2004
Symantec Norton Internet Security	Version 2004

References (16)

http://marc.info/?l=bugtraq&m=107970885922442&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=107980262324362&w=2

Source: cve@mitre.org

http://secunia.com/advisories/11168

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/549054

Source: cve@mitre.org

US Government Resource

http://www.nextgenss.com/advisories/nisrce.txt

Source: cve@mitre.org

PatchVendor Advisory

http://www.sarc.com/avcenter/security/Content/2004.03.19.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/9915

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/15538

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=107970885922442&w=2