CVE-2009-1432

2009-04-3020:30:00

CWE-20

[email protected]

web.nvd.nist.gov

symantec

reporting

server

remote attack

phishing

url

security vulnerability

cve-2009-1432

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.013 Low

EPSS

Percentile

85.8%

JSON

Symantec Reporting Server, as used in Symantec AntiVirus (SAV) Corporate Edition 10.1 before 10.1 MR8 and 10.2 before 10.2 MR2, Symantec Client Security (SCS) before 3.1 MR8, and the Symantec Endpoint Protection Manager (SEPM) component in Symantec Endpoint Protection (SEP) before 11.0 MR2, allows remote attackers to inject arbitrary text into the login screen, and possibly conduct phishing attacks, via vectors involving a URL that is not properly handled.

Affected configurations

NVD

Node

symantecantivirusMatch10.1-corporate

symantecantivirusMatch10.1maintenance_release7corporate

symantecantivirusMatch10.2-corporate

symantecantivirusMatch10.2maintenance_release1corporate

symantecclient_securityMatch3.1-

symantecclient_securityMatch3.1maintenance_release7

symantecendpoint_protectionMatch11.0-

symantecendpoint_protectionMatch11.0maintenance_release1

CPENameOperatorVersion
symantec:antivirussymantec antiviruseq10.1
symantec:antivirussymantec antiviruseq10.2
symantec:client_securitysymantec client securityeq3.1
symantec:endpoint_protectionsymantec endpoint protectioneq11.0

CPE	Name	Operator	Version
symantec:antivirus	symantec antivirus	eq	10.1
symantec:antivirus	symantec antivirus	eq	10.2
symantec:client_security	symantec client security	eq	3.1
symantec:endpoint_protection	symantec endpoint protection	eq	11.0