CVE-2009-1431

XFR.EXE in the Intel File Transfer service in the console in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine Server; Symantec AntiVirus (SAV) Corporate Edition 9 before 9.0 MR7, 10.0 and 10.1 before 10.1 MR8, and 10.2 before 10.2 MR2; Symantec Client Security (SCS) 2 before 2.0 MR7 and 3 before 3.1 MR8; and Symantec Endpoint Protection (SEP) before 11.0 MR3, allows remote attackers to execute arbitrary code by placing the code on a (1) share or (2) WebDAV server, and then sending the UNC share pathname to this service.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.securityfocus.com/bid/34675	Third Party Advisory VDB Entry
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=786	Third Party Advisory
http://www.securitytracker.com/id?1022131	Third Party Advisory VDB Entry
http://secunia.com/advisories/34856	Third Party Advisory
http://www.vupen.com/english/advisories/2009/1204	Third Party Advisory
http://www.securitytracker.com/id?1022132	Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1022130	Third Party Advisory VDB Entry
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090428_02	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/50179	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:symantec:client_security::::::::
	cpe:2.3:a:symantec:client_security::::::::
	cpe:2.3:a:symantec:endpoint_protection::::::::
	cpe:2.3:a:symantec:system_center::::::::
	cpe:2.3:a:symantec:antivirus_central_quarantine_server::::::::
	cpe:2.3:a:symantec:antivirus::-:corporate:::::
	cpe:2.3:a:symantec:antivirus:-:-:srv:::::*
	cpe:2.3:a:symantec:antivirus:::corporate:::::*

Information

Published : 2009-04-29 08:30

Updated : 2019-09-20 07:10

NVD link : CVE-2009-1431

Mitre link : CVE-2009-1431

JSON object : View

CWE

NVD-CWE-Other

Products Affected

symantec

system_center
antivirus_central_quarantine_server
client_security
endpoint_protection
antivirus

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.securityfocus.com/bid/34675", "name": "34675", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "BID"}, {"url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=786", "name": "20090429 Symantec System Center Alert Management System Console Arbitrary Program Execution Design Error Vulnerability", "tags": ["Third Party Advisory"], "refsource": "IDEFENSE"}, {"url": "http://www.securitytracker.com/id?1022131", "name": "1022131", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/34856", "name": "34856", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.vupen.com/english/advisories/2009/1204", "name": "ADV-2009-1204", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.securitytracker.com/id?1022132", "name": "1022132", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://www.securitytracker.com/id?1022130", "name": "1022130", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090428_02", "name": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090428_02", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50179", "name": "symantec-xfr-code-execution(50179)", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "XFR.EXE in the Intel File Transfer service in the console in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine Server; Symantec AntiVirus (SAV) Corporate Edition 9 before 9.0 MR7, 10.0 and 10.1 before 10.1 MR8, and 10.2 before 10.2 MR2; Symantec Client Security (SCS) 2 before 2.0 MR7 and 3 before 3.1 MR8; and Symantec Endpoint Protection (SEP) before 11.0 MR3, allows remote attackers to execute arbitrary code by placing the code on a (1) share or (2) WebDAV server, and then sending the UNC share pathname to this service."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2009-1431", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2009-04-29T15:30Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:symantec:client_security:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "2.0"}, {"cpe23Uri": "cpe:2.3:a:symantec:client_security:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.1", "versionStartIncluding": "3.0"}, {"cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "11.0"}, {"cpe23Uri": "cpe:2.3:a:symantec:system_center:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:antivirus_central_quarantine_server:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:antivirus:*:-:corporate:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "9.0"}, {"cpe23Uri": "cpe:2.3:a:symantec:antivirus:-:-:srv:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:antivirus:*:*:corporate:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "10.2", "versionStartIncluding": "10"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2019-09-20T14:10Z"}

9.3 /10