Symantec Norton AntiVirus 2011 does not properly interact with the processing of hcp:// URLs by the Microsoft Help and Support Center, which makes it easier for remote attackers to execute arbitrary code via malware that is correctly detected by this product, but with a detection approach that occurs too late to stop the code execution. NOTE: the researcher indicates that a vendor response was received, stating that this issue "falls into the work of our Firewall and not our AV (per our methodology of layers of defense)."
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2012-08-22T10:00:00Z

Updated: 2024-09-16T22:15:12.620Z

Reserved: 2010-09-24T00:00:00Z

Link: CVE-2010-3497

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2012-08-22T10:42:04.070

Modified: 2012-08-22T10:42:04.070

Link: CVE-2010-3497

cve-icon Redhat

No data.