Lucene search

MitreCVE-2005-2759

HistoryOct 20, 2005 - 11:02 p.m.

CVE-2005-2759

2005-10-2023:02:00

mitre

web.nvd.nist.gov

cve-2005-2759

symantec

norton antivirus

macintosh

liveupdate

setuid

java

local privilege escalation

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.6

Confidence

High

EPSS

Percentile

9.5%

JSON

SPLIT The jlucaller program in LiveUpdate for Symantec Norton AntiVirus 9.0.3 on Macintosh runs setuid when executing Java programs, which allows local users to gain privileges. NOTE: due to a CNA error, this candidate was also originally assigned to an issue in DiskMountNotify. Use CVE-2005-3270 for the DiskMountNotify issue, and CVE-2005-2759 for the LiveUpdate issue.

Affected configurations

Nvd

Node

symantecnorton_antivirusMatch9.0.3macintosh

VendorProductVersionCPE
symantecnorton_antivirus9.0.3cpe:2.3:a:symantec:norton_antivirus:9.0.3:*:macintosh:*:*:*:*:*

Vendor	Product	Version	CPE
symantec	norton_antivirus	9.0.3	cpe:2.3:a:symantec:norton_antivirus:9.0.3::macintosh:::::

References

secunia.com/advisories/17268

securitytracker.com/id?1015083

www.idefense.com/application/poi/display?id=324&type=vulnerabilities

www.securityfocus.com/bid/15142

www.symantec.com/avcenter/security/Content/2005.10.19a.html

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.6

Confidence

High

EPSS

Percentile

9.5%

JSON

Related for CVE-2005-2759