Unrated severityNVD Advisory· Published Nov 3, 2004· Updated Jun 16, 2026
CVE-2004-0920
CVE-2004-0920
Description
Symantec Norton AntiVirus 2004, and earlier versions, allows a virus or other malicious code to avoid detection or cause a denial of service (application crash) using a filename containing an MS-DOS device name.
Affected products
2cpe:2.3:a:symantec:norton_antivirus:*:*:ms_exchange:*:*:*:*:*+ 1 more
- cpe:2.3:a:symantec:norton_antivirus:*:*:ms_exchange:*:*:*:*:*range: <=2.1
- (no CPE)range: <=2004
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.