Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:1845
HistoryJun 10, 2007 - 12:00 a.m.

Symantec System Center报告服务器远程特权提升漏洞

2007-06-1000:00:00
Root
www.seebug.org
15
JSON

Symantec Reporting Server是一款Symantec系统中心控制台的可选WEB应用程序。

Symantec Reporting Server处理输出数据存在设计错误,远程攻击者可以利用漏洞以应用程序权限执行任意程序。

报告服务器导出数据处理建立的文件可被未授权用户建立恶意可执行文件并执行。导致获得对应用程序的控制。

Symantec Reporting Server 1.0.197.0
Symantec Client Security 3.1 .401
Symantec Client Security 3.1 .400
Symantec Client Security 3.1 .396
Symantec Client Security 3.1 .394
Symantec Client Security 3.1
Symantec AntiVirus Corporate Edition 10.1 .401
Symantec AntiVirus Corporate Edition 10.1 .400
Symantec AntiVirus Corporate Edition 10.1 .396
Symantec AntiVirus Corporate Edition 10.1 .394
Symantec AntiVirus Corporate Edition 10.1
可参考供应商安全公告获得补丁信息:

<a href=“http://www.symantec.com/avcenter/security/Content/2007.06.05a.html” target=“_blank”>http://www.symantec.com/avcenter/security/Content/2007.06.05a.html</a>

JSON