Lucene search

MitreCVE-2007-2896

HistoryMay 30, 2007 - 1:30 a.m.

CVE-2007-2896

2007-05-3001:30:00

mitre

web.nvd.nist.gov

cve-2007-2896

symantec

enterprise security manager

esm 6.5.3

windows

denial of service

cpu consumption

application hang

network scans

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.006

Percentile

78.4%

JSON

Race condition in the Symantec Enterprise Security Manager (ESM) 6.5.3 managers and agents on Windows before 20070524 allows remote attackers to cause a denial of service (CPU consumption and application hang) via certain network scans to ESM ports.

Affected configurations

Nvd

Node

microsoftall_windows

AND

symantecenterprise_security_managerMatch6.5.3

VendorProductVersionCPE
microsoftall_windows*cpe:2.3:o:microsoft:all_windows:*:*:*:*:*:*:*:*
symantecenterprise_security_manager6.5.3cpe:2.3:a:symantec:enterprise_security_manager:6.5.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	all_windows	*	cpe:2.3:o:microsoft:all_windows::::::::
symantec	enterprise_security_manager	6.5.3	cpe:2.3:a:symantec:enterprise_security_manager:6.5.3:::::::*

References

osvdb.org/35077

secunia.com/advisories/25390

securityresponse.symantec.com/avcenter/security/Content/2007.05.24a.html

securityresponse.symantec.com/avcenter/security/Content/2007.05.24b.html

www.securityfocus.com/bid/24123

www.securitytracker.com/id?1018120

www.vupen.com/english/advisories/2007/1940

exchange.xforce.ibmcloud.com/vulnerabilities/34507

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.006

Percentile

78.4%

JSON

Related for CVE-2007-2896