The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec Antivirus Corporate Edition 10.1.4.4010 on Windows 2000 SP4 and Symantec Endpoint Protection before 11.x, does not properly validate the CommandLine field of an AMS request, which allows remote attackers to cause a denial of service (application crash) via a crafted request.
Conclusion & alert: CVE-2010-3268 is rated High Exploit Risk (69.5/100): CVSS Medium severity, with high exploitation likelihood (EPSS 8.75%, 92th percentile). Core evidence: 1 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +2.23% over the last day, indicating growing attacker interest. Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
| EDB-ID | Source | Kind | Published | Link |
|---|---|---|---|---|
| — | nvd_ref | exploit_tag | Exploit-DB ↗ |
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2025-12-28 | 6.51% | 8.75% | +2.23% |
| 2 | 2025-12-27 | 8.75% | 6.51% | -2.23% |
| 3 | 2025-10-28 | — | 8.75% | — |
Full EPSS history (14 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 5.0 | 2.0 | MEDIUM |
|
10.0 | 2.9 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| intel | intel_alert_management_system | — | cpe:2.3:a:intel:intel_alert_management_system:*:*:*:*:*:*:*:* |
| symantec | antivirus | 10.1.4.4010 | cpe:2.3:a:symantec:antivirus:10.1.4.4010:*:corporate:*:*:*:*:* |
| symantec | endpoint_protection | 11.0 | cpe:2.3:a:symantec:endpoint_protection:11.0:*:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0 | cpe:2.3:a:symantec:endpoint_protection:11.0:rtm:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0 | cpe:2.3:a:symantec:endpoint_protection:11.0:ru5:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0 | cpe:2.3:a:symantec:endpoint_protection:11.0:ru6:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0 | cpe:2.3:a:symantec:endpoint_protection:11.0:ru6a:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0 | cpe:2.3:a:symantec:endpoint_protection:11.0:ru6mp1:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0 | cpe:2.3:a:symantec:endpoint_protection:11.0:ru6mp2:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.1 | cpe:2.3:a:symantec:endpoint_protection:11.0.1:*:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.1 | cpe:2.3:a:symantec:endpoint_protection:11.0.1:mp1:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.1 | cpe:2.3:a:symantec:endpoint_protection:11.0.1:mp2:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.2 | cpe:2.3:a:symantec:endpoint_protection:11.0.2:*:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.2 | cpe:2.3:a:symantec:endpoint_protection:11.0.2:mp1:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.2 | cpe:2.3:a:symantec:endpoint_protection:11.0.2:mp2:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.4 | cpe:2.3:a:symantec:endpoint_protection:11.0.4:*:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.4 | cpe:2.3:a:symantec:endpoint_protection:11.0.4:mp1a:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.4 | cpe:2.3:a:symantec:endpoint_protection:11.0.4:mp2:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.3001 | cpe:2.3:a:symantec:endpoint_protection:11.0.3001:*:*:*:*:*:*:* |