CVE-2010-0106 Vulnerability Analysis & Exploit Details

CVE-2010-0106 Vulnerability Summary

CVE-2010-0106: The on-demand scanning in Symantec AntiVirus 10.0.x and 10.1.x before MR9, AntiVirus 10.2.x, and Client Security 3.0.x and 3.1.x before MR9, when Tamper protection is disabled, allows remote attackers to cause a denial of service (prevention of on-demand scanning) via "specific events" that prevent the user from having read access to unspecified resources.

Exploit Prediction Scoring System (EPSS)

The EPSS score estimates the probability that this vulnerability will be exploited in the near future.

EPSS Score: 0.193% (probability of exploit)

EPSS Percentile: 57.87% (lower percentile = lower relative risk)
This vulnerability is less risky than approximately 42.13% of others.

CVE-2010-0106 References

External References

• http://osvdb.org/62414
• http://secunia.com/advisories/38653
• http://www.securityfocus.com/bid/38219
• http://www.securitytracker.com/id?1023621
• http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100217_00
• http://www.vupen.com/english/advisories/2010/0410
• https://exchange.xforce.ibmcloud.com/vulnerabilities/56354
• http://osvdb.org/62414
• http://secunia.com/advisories/38653
• http://www.securityfocus.com/bid/38219
• http://www.securitytracker.com/id?1023621
• http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100217_00
• http://www.vupen.com/english/advisories/2010/0410
• https://exchange.xforce.ibmcloud.com/vulnerabilities/56354

CWE Common Weakness Enumeration

NVD-CWE-Other

Vulnerable Configurations

• cpe:2.3:a:symantec:antivirus:10.0:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.1:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.1:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.1.1:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.1.1:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.2:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.2:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.2.1:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.2.1:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.2.2:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.2.2:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.3:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.3:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.4:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.4:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.5:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.5:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.6:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.6:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.7:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.7:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.8:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.8:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.0.9:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.0.9:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1:*:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1:*:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1:mp1:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1:mp1:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1:mr4:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1:mr4:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1:mr5:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1:mr5:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1:mr7:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1:mr7:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1.0.1:*:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1.0.1:*:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1.4:*:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1.4:*:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1.4.1:*:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1.4.1:*:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1.5:*:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1.5:*:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1.5.1:*:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1.5.1:*:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1.6:*:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1.6:*:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1.6.1:*:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1.6.1:*:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.1.7:*:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.1.7:*:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.2:*:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.2:*:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.2:mr2:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.2:mr2:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:antivirus:10.2:mr3:corporate:*:*:*:*:*
  cpe:2.3:a:symantec:antivirus:10.2:mr3:corporate:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0:mr1:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0:mr1:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0:mr2:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0:mr2:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0.0.359:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0.0.359:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0.1.1000:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0.1.1000:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0.1.1007:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0.1.1007:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0.1.1008:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0.1.1008:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0.2:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0.2:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0.2.2000:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0.2.2000:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0.2.2001:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0.2.2001:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0.2.2010:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0.2.2010:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0.2.2011:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0.2.2011:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0.2.2020:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0.2.2020:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.0.2.2021:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.0.2.2021:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.1:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.1:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.1:mr4:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.1:mr4:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.1:mr5:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.1:mr5:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.1:mr7:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.1:mr7:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.1.0.396:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.1.0.396:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.1.0.401:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.1.0.401:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.1.394:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.1.394:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.1.400:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.1.400:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:client_security:3.1.401:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:client_security:3.1.401:*:*:*:*:*:*:*
• cpe:2.3:a:symantec:endpoint_protection:11.0:*:*:*:*:*:*:*
  cpe:2.3:a:symantec:endpoint_protection:11.0:*:*:*:*:*:*:*

Other 5 Recently Published CVEs Vulnerabilities

• CVE-2025-2130 – A vulnerability was found in OpenXE up to 1.12. It has been declared as problematic. This vulnerability affects unknown code of the component Ticke...
• CVE-2025-26205 – Lua 5.4.7, when the debug library is used, has a out-of-bounds read and segmentation violation in mainpositionTV in ltable.c. NOTE: this is dispute...
• CVE-2025-26204 – Lua 5.4.7, when the debug library is used, has a out-of-bounds read and segmentation violation in equalkey in ltable.c. NOTE: this is disputed beca...
• CVE-2025-2129 – A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecur...
• CVE-2025-2127 – A vulnerability was found in JoomlaUX JUX Real Estate 3.4.0 on Joomla. It has been classified as problematic. Affected is an unknown function of th...