Lucene search
HistoryJul 16, 2007 - 11:30 p.m.
CVE-2007-3800
cve-2007-3800
real-time scanner
rtvscan
symantec antivirus
corporate edition
client security
privilege escalation
crafted code
6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:S/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Unspecified vulnerability in the Real-time scanner (RTVScan) component in Symantec AntiVirus Corporate Edition 9.0 through 10.1 and Client Security 2.0 through 3.1, when the Notification Message window is enabled, allows local users to gain privileges via crafted code.
Affected configurations
Node
symantecclient_securityRange≤3.0
ORsymantecclient_securityMatch2.0
ORsymantecclient_securityMatch2.1
ORsymantecnorton_antivirusRange≤10.1corporate
ORsymantecnorton_antivirusMatch9.0corporate
ORsymantecnorton_antivirusMatch10.0corporate
Related
cvelist
cvelist
CVE-2007-3800
2007-07-16 23:00:00
nessus
nessus
Symantec SAVCE RTVScan Component Local Privilege Escalation (SYM07-017)
2007-07-19 00:00:00
prion
prion
Code injection
2007-07-16 23:30:00
nvd
nvd
CVE-2007-3800
2007-07-16 23:30:00
6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:S/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2007-3800