Command injection

2009-04-2915:30:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.97 High

EPSS

Percentile

99.7%

JSON

The Intel LANDesk Common Base Agent (CBA) in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine Server; Symantec AntiVirus (SAV) Corporate Edition 9 before 9.0 MR7, 10.0 and 10.1 before 10.1 MR8, and 10.2 before 10.2 MR2; Symantec Client Security (SCS) 2 before 2.0 MR7 and 3 before 3.1 MR8; and Symantec Endpoint Protection (SEP) before 11.0 MR3, allows remote attackers to execute arbitrary commands via a crafted packet whose contents are interpreted as a command to be launched in a new process by the CreateProcessA function.

CPENameOperatorVersion
antiviruseq10.0.7 corporate
antiviruseq10.0.6 corporate
antiviruseq10.0.2 corporate
antivirusle9.0
antiviruseq10.0.1 corporate
antiviruseq10.0.9 corporate
antiviruseq10.0 corporate
antivirusle10.2
antiviruseq10.0.5 corporate
antiviruseq10.0.4 corporate

Name	Operator	Version
antivirus	eq	10.0.7 corporate
antivirus	eq	10.0.6 corporate
antivirus	eq	10.0.2 corporate
antivirus	le	9.0
antivirus	eq	10.0.1 corporate
antivirus	eq	10.0.9 corporate
antivirus	eq	10.0 corporate
antivirus	le	10.2
antivirus	eq	10.0.5 corporate
antivirus	eq	10.0.4 corporate