CVE-2007-2375

The agent remote upgrade interface in Symantec Enterprise Security Manager (ESM) before 20070405 does not verify the authenticity of upgrades, which allows remote attackers to execute arbitrary code via software that implements the agent upgrade protocol.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.symantec.com/avcenter/security/Content/2007.04.05d.html	Vendor Advisory
http://www.securityfocus.com/bid/23287
http://secunia.com/advisories/24767	Patch Vendor Advisory
http://www.securitytracker.com/id?1017881
http://www.vupen.com/english/advisories/2007/1277

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:symantec:enterprise_security_manager:5.5.3:::::::*
	cpe:2.3:a:symantec:enterprise_security_manager:6.0:::::::*
	cpe:2.3:a:symantec:enterprise_security_manager:6.5.2:::::::*
	cpe:2.3:a:symantec:enterprise_security_manager:6.5:::::::*
	cpe:2.3:a:symantec:enterprise_security_manager:6.5.1:::::::*

Information

Published : 2007-04-30 16:19

Updated : 2011-03-07 18:54

NVD link : CVE-2007-2375

Mitre link : CVE-2007-2375

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

symantec

enterprise_security_manager

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.symantec.com/avcenter/security/Content/2007.04.05d.html", "name": "http://www.symantec.com/avcenter/security/Content/2007.04.05d.html", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/23287", "name": "23287", "tags": [], "refsource": "BID"}, {"url": "http://secunia.com/advisories/24767", "name": "24767", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securitytracker.com/id?1017881", "name": "1017881", "tags": [], "refsource": "SECTRACK"}, {"url": "http://www.vupen.com/english/advisories/2007/1277", "name": "ADV-2007-1277", "tags": [], "refsource": "VUPEN"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The agent remote upgrade interface in Symantec Enterprise Security Manager (ESM) before 20070405 does not verify the authenticity of upgrades, which allows remote attackers to execute arbitrary code via software that implements the agent upgrade protocol."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-2375", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2007-04-30T23:19Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:symantec:enterprise_security_manager:5.5.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:enterprise_security_manager:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:enterprise_security_manager:6.5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:enterprise_security_manager:6.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:enterprise_security_manager:6.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2011-03-08T02:54Z"}