6.8 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
6.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
25.6%
Untrusted search path vulnerability in unspecified components in Symantec LiveUpdate for Macintosh 3.0.0 through 3.5.0 do not set the execution path, which allows local users to gain privileges via a Trojan horse program.
secunia.com/advisories/19682
securityreason.com/securityalert/100
securityresponse.symantec.com/avcenter/security/Content/2006.04.17b.html
securitytracker.com/id?1015953
www.securityfocus.com/archive/1/431318/100/0/threaded
www.securityfocus.com/bid/17571
www.vupen.com/english/advisories/2006/1386
exchange.xforce.ibmcloud.com/vulnerabilities/25839