The Agent Control Interface in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x prior to 6.0 MP1 allows remote authenticated users to execute arbitrary commands by leveraging client-system access to upload a log file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
broadcom symantec critical system protection 5.2.9 |
||
symantec data center security 6.0.0 |