fkie_cve-2007-2375
Vulnerability from fkie_nvd
Published
2007-04-30 23:19
Modified
2025-04-09 00:30
Severity ?
Summary
The agent remote upgrade interface in Symantec Enterprise Security Manager (ESM) before 20070405 does not verify the authenticity of upgrades, which allows remote attackers to execute arbitrary code via software that implements the agent upgrade protocol.
References
cve@mitre.orghttp://secunia.com/advisories/24767Patch, Vendor Advisory
cve@mitre.orghttp://www.securityfocus.com/bid/23287
cve@mitre.orghttp://www.securitytracker.com/id?1017881
cve@mitre.orghttp://www.symantec.com/avcenter/security/Content/2007.04.05d.htmlVendor Advisory
cve@mitre.orghttp://www.vupen.com/english/advisories/2007/1277
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/24767Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/23287
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1017881
af854a3a-2127-422b-91ae-364da2661108http://www.symantec.com/avcenter/security/Content/2007.04.05d.htmlVendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2007/1277
Impacted products
Vendor Product Version
symantec enterprise_security_manager 5.5.3
symantec enterprise_security_manager 6.0
symantec enterprise_security_manager 6.5
symantec enterprise_security_manager 6.5.1
symantec enterprise_security_manager 6.5.2


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:symantec:enterprise_security_manager:5.5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "2D54B02D-2EEC-4057-9DC9-4D34DFCBB8FA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:enterprise_security_manager:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D7D3219F-1AC4-4ED6-ACE0-CB33A104F484",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:enterprise_security_manager:6.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "5296D33B-5F71-4DE3-B5CD-9328F091CEA9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:enterprise_security_manager:6.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8D5C43D9-37D5-4981-87EF-BE7FAB2D1531",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:enterprise_security_manager:6.5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "9BC1C6DE-0C86-4A16-A432-3AB93AC1A754",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The agent remote upgrade interface in Symantec Enterprise Security Manager (ESM) before 20070405 does not verify the authenticity of upgrades, which allows remote attackers to execute arbitrary code via software that implements the agent upgrade protocol."
    },
    {
      "lang": "es",
      "value": "El agente remoto de la interfaz de actualizaci\u00f3n en Symantec Enterprise Security Manager (ESM) anterior a 20070405 no verifica la autenticidad de las actualizaciones, lo cual permite a un atacante remoto ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de software que implemente el agente del protocolo de actualizaci\u00f3n."
    }
  ],
  "id": "CVE-2007-2375",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-04-30T23:19:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/24767"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/23287"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1017881"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.symantec.com/avcenter/security/Content/2007.04.05d.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/1277"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/24767"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/23287"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1017881"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.symantec.com/avcenter/security/Content/2007.04.05d.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/1277"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.