The agent remote upgrade interface in Symantec Enterprise Security Manager (ESM) before 20070405 does not verify the authenticity of upgrades, which allows remote attackers to execute arbitrary code via software that implements the agent upgrade protocol.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2007-04-30 23:19
Updated : 2024-02-04 17:13
NVD link : CVE-2007-2375
Mitre link : CVE-2007-2375
CVE.ORG link : CVE-2007-2375
JSON object : View
Products Affected
symantec
- enterprise_security_manager
CWE