CVE-2002-1540

The client for Symantec Norton AntiVirus Corporate Edition 7.5.x before 7.5.1 Build 62 and 7.6.x before 7.6.1 Build 35a runs winhlp32 with raised privileges, which allows local users to gain privileges by using certain features of winhlp32.

Published: Mar 31, 2003
Updated: Apr 13, 2023
CVE: CVE-2002-1540
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
symantec / norton_antivirus	corporate_7.51	corporate_7.51.x
symantec / norton_antivirus	corporate_7.6	corporate_7.6.x
symantec / norton_antivirus	corporate_7.5	corporate_7.5.x

http://archives.neohapsis.com/archives/bugtraq/2002-10/0346.html
http://archives.neohapsis.com/archives/bugtraq/2002-10/0369.html
http://www.iss.net/security_center/static/10475.php
http://www.osvdb.org/6258

Vulnerability Database

CVE-2002-1540