Symantec Norton AntiVirus 2011 does not properly interact with the processing of hcp:// URLs by the Microsoft Help and Support Center, which makes it easier for remote attackers to execute arbitrary code via malware that is correctly detected by this product, but with a detection approach that occurs too late to stop the code execution. NOTE: the researcher indicates that a vendor response was received, stating that this issue "falls into the work of our Firewall and not our AV (per our methodology of layers of defense)."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2012-08-22T10:00:00Z
Updated: 2024-09-16T22:15:12.620Z
Reserved: 2010-09-24T00:00:00Z
Link: CVE-2010-3497
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2012-08-22T10:42:04.070
Modified: 2012-08-22T10:42:04.070
Link: CVE-2010-3497
Redhat
No data.