Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 05/06/2007 Updated: 29/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Symantec Reporting Server 1.0.197.0, and other versions prior to 1.0.224.0, as used in Symantec Client Security 3.1 and later, and Symantec AntiVirus Corporate Edition (SAV CE) 10.1 and later, does not initialize a critical variable, which allows malicious users to create arbitrary executable files via unknown manipulations of a file that is created during data export.

Vulnerable Product	Search on Vulmon	Subscribe to Product
symantec client security 3.1.394
symantec client security 3.1.396
symantec norton antivirus 10.1
symantec reporting server
symantec client security 3.1
symantec norton antivirus 10.1.400
symantec norton antivirus 10.1.401
symantec client security 3.1.400
symantec client security 3.1.401
symantec norton antivirus 10.0.2.2021
symantec norton antivirus 10.1.396

NVD-CWE-Other http://www.symantec.com/avcenter/security/Content/2007.06.05a.html http://www.securityfocus.com/bid/24313 http://www.securitytracker.com/id?1018196 http://secunia.com/advisories/25543 http://www.vupen.com/english/advisories/2007/2074 http://osvdb.org/36109 https://exchange.xforce.ibmcloud.com/vulnerabilities/34744 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-3021

Vulnerability Summary

References

Vulmon Search

About

Products

Connect