Symantec Reporting Server 1.0.197.0, and other versions prior to 1.0.224.0, as used in Symantec Client Security 3.1 and later, and Symantec AntiVirus Corporate Edition (SAV CE) 10.1 and later, does not initialize a critical variable, which allows malicious users to create arbitrary executable files via unknown manipulations of a file that is created during data export.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec client security 3.1.394 |
||
symantec client security 3.1.396 |
||
symantec norton antivirus 10.1 |
||
symantec reporting server |
||
symantec client security 3.1 |
||
symantec norton antivirus 10.1.400 |
||
symantec norton antivirus 10.1.401 |
||
symantec client security 3.1.400 |
||
symantec client security 3.1.401 |
||
symantec norton antivirus 10.0.2.2021 |
||
symantec norton antivirus 10.1.396 |