Intrusion Prevention

Norton.AntiVirus.Decompression.Bomb.DoS

Description

This indicates a vulnerability in Norton Antivirus 2002 and 2003. This vulnerability is triggered by scanning a compressed archive that contains a malicious executable nested in over 49647 directories. The vulnerable products consume 100% of the CPU and causes a denial of service.

Affected Products

Symantec Norton AntiVirus 2003 Professional Edition.
Symantec Norton AntiVirus 2002.

Impact

Denial of service.

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

CVE References

CVE-2004-0683