CVE-2001-1126

Description

Symantec LiveUpdate 1.4 through 1.6, and possibly later versions, allows remote attackers to cause a denial of service (flood) via DNS spoofing of the update.symantec.com site.

Affected products

• Symantec / liveupdate1.4 – 1.4
• Symantec / liveupdate1.5 – 1.5
• Symantec / liveupdate1.6 – 1.6

References

• MISChttp://www.securityfocus.com/bid/3413
• MISChttp://www.securityfocus.com/archive/1/218717
• MISChttp://www.sarc.com/avcenter/security/Content/2001.10.05.html
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/7235