CVE-2003-0994

The GUI functionality for an interactive session in Symantec LiveUpdate 1.70.x through 1.90.x, as used in Norton Internet Security 2001 through 2004, SystemWorks 2001 through 2004, and AntiVirus and Norton AntiVirus Pro 2001 through 2004, AntiVirus for Handhelds v3.0, allows local users to gain SYSTEM privileges.

Published: Feb 3, 2004
Updated: Apr 13, 2023
CVE: CVE-2003-0994
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
symantec / norton_antivirus	2001	2001.x
symantec / norton_internet_security	2002	2002.x
symantec / norton_system_works	2002	2002.x
symantec / norton_internet_security	2001	2001.x
symantec / norton_internet_security	2004	2004.x
symantec / norton_internet_security	2003	2003.x
symantec / norton_system_works	2001	2001.x
symantec / norton_antivirus	3.0	3.0.x
symantec / norton_antivirus	2002	2002.x
symantec / norton_system_works	2003	2003.x
symantec / norton_system_works	2004	2004.x
symantec / norton_antivirus	2003	2003.x
symantec / windows_liveupdate	1.70.x	1.70.x.x
symantec / windows_liveupdate	1.90.x	1.90.x.x
symantec / norton_antivirus	2.1	2.1.x
symantec / norton_antivirus	2004	2004.x

Vulnerability Database

289,599

CVE-2003-0994