CVE-2004-2147

Unknown versions of Symantec Norton AntiVirus and Microsoft Outlook allow attackers to cause a denial of service (crash) via malformed e-mail messages (1) without a body or (2) without a carriage return ("\n") separating the headers from the body.

Published: Dec 31, 2004
Updated: Apr 13, 2023
CVE: CVE-2004-2147
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
symantec / norton_antivirus	2001	2001.x
symantec / norton_antivirus	professional_2002	professional_2002.x
symantec / norton_antivirus	corporate_7.61	corporate_7.61.x
symantec / norton_antivirus	corporate_7.2	corporate_7.2.x
symantec / norton_antivirus	corporate_7.51	corporate_7.51.x
symantec / norton_antivirus	2.1	2.1.x
symantec / norton_antivirus	professional_2003	professional_2003.x
symantec / norton_antivirus	corporate_7.0	corporate_7.0.x
symantec / norton_antivirus	corporate_7.6	corporate_7.6.x
symantec / norton_antivirus	professional_2004	professional_2004.x
symantec / norton_antivirus	professional_2001	professional_2001.x
symantec / norton_antivirus	corporate_7.5	corporate_7.5.x
symantec / norton_antivirus	corporate_8.0	corporate_8.0.x
symantec / norton_antivirus	2002	2002.x
symantec / norton_antivirus	2003	2003.x
symantec / norton_antivirus	corporate_7.60.build_926	corporate_7.60.build_926.x

Vulnerability Database

CVE-2004-2147