CyberSec.Space Logo
Back to CVE Browser

CVE-2004-0444

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1590%
EPSS Percentile39.53th
PublishedJul 7, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple vulnerabilities in SYMDNS.SYS for Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allow remote attackers to cause a denial of service or execute arbitrary code via (1) a manipulated length byte in the first-level decoding routine for NetBIOS Name Service (NBNS) that modifies an index variable and leads to a stack-based buffer overflow, (2) a heap-based corruption problem in an NBNS response that is missing certain RR fields, and (3) a stack-based buffer overflow in the DNS component via a Resource Record (RR) with a long canonical name (CNAME) field composed of many smaller components.

Affected Platforms (CPE)

πŸ“¦
Symantec

Client Firewall

= 5.01
πŸ“¦
Symantec

Client Firewall

= 5.1.1
πŸ“¦
Symantec

Client Security

= 1.0
πŸ“¦
Symantec

Client Security

= 1.1
πŸ“¦
Symantec

Client Security

= 1.2
πŸ“¦
Symantec

Client Security

= 1.3
πŸ“¦
Symantec

Client Security

= 1.4
πŸ“¦
Symantec

Client Security

= 1.5
πŸ“¦
Symantec

Client Security

= 1.6
πŸ“¦
Symantec

Client Security

= 1.7
πŸ“¦
Symantec

Client Security

= 1.8
πŸ“¦
Symantec

Client Security

= 1.9
πŸ“¦
Symantec

Client Security

= 2.0
πŸ“¦
Symantec

Norton Antispam

= 2004
πŸ“¦
Symantec

Norton Internet Security

= 2002
πŸ“¦
Symantec

Norton Internet Security

= 2002
πŸ“¦
Symantec

Norton Internet Security

= 2003
πŸ“¦
Symantec

Norton Internet Security

= 2003
πŸ“¦
Symantec

Norton Internet Security

= 2004
πŸ“¦
Symantec

Norton Internet Security

= 2004
πŸ“¦
Symantec

Norton Personal Firewall

= 2002
πŸ“¦
Symantec

Norton Personal Firewall

= 2003
πŸ“¦
Symantec

Norton Personal Firewall

= 2004

References & Advisories

πŸ”— http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021360.html
πŸ”— http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021361.html
πŸ”— http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021362.html
πŸ”— http://secunia.com/advisories/11066
πŸ”— http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html
πŸ”— http://securitytracker.com/id?1010144
πŸ”— http://securitytracker.com/id?1010145
πŸ”— http://securitytracker.com/id?1010146

Related Vulnerabilities

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...

CVE-2026-121886.3

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules...