← back
CVE-2004-1910

CVE-2004-1910

EPSS 3.4%
rufsi.dll in Symantec Virus Detection allows remote attackers to cause a denial of service (crash) via a long string to the GetPrivateProfileString function. NOTE: this issue was originally reported as a buffer overflow, but that specific claim is disputed by the vendor, although a crash is acknowledged.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/23919unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.grok.org.uk/pipermail/full-disclosure/2004-April/019891.htmlhttp://marc.info/?l=bugtraq&m=108136901406896&w=2http://marc.info/?l=bugtraq&m=108143485021721&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/15778http://www.securityfocus.com/bid/10069