CVE-2009-1432

Symantec Reporting Server, as used in Symantec AntiVirus (SAV) Corporate Edition 10.1 before 10.1 MR8 and 10.2 before 10.2 MR2, Symantec Client Security (SCS) before 3.1 MR8, and the Symantec Endpoint Protection Manager (SEPM) component in Symantec Endpoint Protection (SEP) before 11.0 MR2, allows remote attackers to inject arbitrary text into the login screen, and possibly conduct phishing attacks, via vectors involving a URL that is not properly handled.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://secunia.com/advisories/34856	Third Party Advisory
http://secunia.com/advisories/34935	Third Party Advisory
http://securitytracker.com/id?1022136	Third Party Advisory VDB Entry
http://securitytracker.com/id?1022137	Third Party Advisory VDB Entry
http://securitytracker.com/id?1022138	Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/34668	Third Party Advisory VDB Entry
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090428_00	Vendor Advisory
http://www.vupen.com/english/advisories/2009/1202	Third Party Advisory
http://www.vupen.com/english/advisories/2009/1204	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/50172	Third Party Advisory VDB Entry
http://secunia.com/advisories/34856	Third Party Advisory
http://secunia.com/advisories/34935	Third Party Advisory
http://securitytracker.com/id?1022136	Third Party Advisory VDB Entry
http://securitytracker.com/id?1022137	Third Party Advisory VDB Entry
http://securitytracker.com/id?1022138	Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/34668	Third Party Advisory VDB Entry
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090428_00	Vendor Advisory
http://www.vupen.com/english/advisories/2009/1202	Third Party Advisory
http://www.vupen.com/english/advisories/2009/1204	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/50172	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:symantec:antivirus:10.1:-:::corporate:::*
	cpe:2.3:a:symantec:antivirus:10.1:maintenance_release7:::corporate:::*
	cpe:2.3:a:symantec:antivirus:10.2:-:::corporate:::*
	cpe:2.3:a:symantec:antivirus:10.2:maintenance_release1:::corporate:::*
	cpe:2.3:a:symantec:client_security:3.1:-::::::
	cpe:2.3:a:symantec:client_security:3.1:maintenance_release7::::::
	cpe:2.3:a:symantec:endpoint_protection:11.0:-::::::
	cpe:2.3:a:symantec:endpoint_protection:11.0:maintenance_release1::::::

History

21 Nov 2024, 01:02

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/34856 - Third Party Advisory~~	() http://secunia.com/advisories/34856 - Third Party Advisory
References	~~() http://secunia.com/advisories/34935 - Third Party Advisory~~	() http://secunia.com/advisories/34935 - Third Party Advisory
References	~~() http://securitytracker.com/id?1022136 - Third Party Advisory, VDB Entry~~	() http://securitytracker.com/id?1022136 - Third Party Advisory, VDB Entry
References	~~() http://securitytracker.com/id?1022137 - Third Party Advisory, VDB Entry~~	() http://securitytracker.com/id?1022137 - Third Party Advisory, VDB Entry
References	~~() http://securitytracker.com/id?1022138 - Third Party Advisory, VDB Entry~~	() http://securitytracker.com/id?1022138 - Third Party Advisory, VDB Entry
References	~~() http://www.securityfocus.com/bid/34668 - Third Party Advisory, VDB Entry~~	() http://www.securityfocus.com/bid/34668 - Third Party Advisory, VDB Entry
References	~~() http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090428_00 - Vendor Advisory~~	() http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090428_00 - Vendor Advisory
References	~~() http://www.vupen.com/english/advisories/2009/1202 - Third Party Advisory~~	() http://www.vupen.com/english/advisories/2009/1202 - Third Party Advisory
References	~~() http://www.vupen.com/english/advisories/2009/1204 - Third Party Advisory~~	() http://www.vupen.com/english/advisories/2009/1204 - Third Party Advisory
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/50172 - Third Party Advisory, VDB Entry~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/50172 - Third Party Advisory, VDB Entry

Information

Published : 2009-04-30 20:30

Updated : 2024-11-21 01:02

NVD link : CVE-2009-1432

Mitre link : CVE-2009-1432

CVE.ORG link : CVE-2009-1432

JSON object : View

Products Affected

symantec

client_security
antivirus
endpoint_protection

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2009-1432", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2009-04-30T20:30:00.627", "references": [{"url": "http://secunia.com/advisories/34856", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/34935", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1022136", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1022137", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1022138", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/34668", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090428_00", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2009/1202", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2009/1204", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50172", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/34856", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/34935", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1022136", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1022137", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1022138", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/34668", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090428_00", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2009/1202", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2009/1204", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50172", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Symantec Reporting Server, as used in Symantec AntiVirus (SAV) Corporate Edition 10.1 before 10.1 MR8 and 10.2 before 10.2 MR2, Symantec Client Security (SCS) before 3.1 MR8, and the Symantec Endpoint Protection Manager (SEPM) component in Symantec Endpoint Protection (SEP) before 11.0 MR2, allows remote attackers to inject arbitrary text into the login screen, and possibly conduct phishing attacks, via vectors involving a URL that is not properly handled."}, {"lang": "es", "value": "Symantec Reporting Server, utilizado en Symantec AntiVirus (SAV) Corporate Edition v10.1 anterior a v10.1 MR8 y v10,2 antes de v10.2 MR2, Symantec Client Security (SCS), antes de v3.1 MR8, y el componente Symantec Endpoint Protection Manager (SEPM) en Symantec Endpoint Protection (SEP) anterior a v11.0 MR2, permite a atacantes remotos inyectar texto arbitrario en la pantalla de inicio de sesi\u00f3n y, posiblemente, realizar ataques de phishing, a trav\u00e9s de vectores relacionados con un URL que no est\u00e1 bien manejada."}], "lastModified": "2024-11-21T01:02:26.800", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:symantec:antivirus:10.1:-:*:*:corporate:*:*:*", "vulnerable": true, "matchCriteriaId": "357629A3-1F45-477D-B560-B4AFB6E163E6"}, {"criteria": "cpe:2.3:a:symantec:antivirus:10.1:maintenance_release7:*:*:corporate:*:*:*", "vulnerable": true, "matchCriteriaId": "D2126B10-14E6-4B47-8DA2-361BD51BD378"}, {"criteria": "cpe:2.3:a:symantec:antivirus:10.2:-:*:*:corporate:*:*:*", "vulnerable": true, "matchCriteriaId": "11C99ECE-8A4E-4DF3-98CF-4B8E15F6662A"}, {"criteria": "cpe:2.3:a:symantec:antivirus:10.2:maintenance_release1:*:*:corporate:*:*:*", "vulnerable": true, "matchCriteriaId": "D4B0ACE4-1374-40DF-8E52-C1785753ACBA"}, {"criteria": "cpe:2.3:a:symantec:client_security:3.1:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "96B92C62-EB73-4777-9307-677754819F2A"}, {"criteria": "cpe:2.3:a:symantec:client_security:3.1:maintenance_release7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A63081A8-FB67-4E43-98CF-CD59D7BA5556"}, {"criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF3B36FF-5C26-4565-A23A-789D1158B867"}, {"criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:maintenance_release1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D62FBC34-2CA4-430E-B3DF-8948E9F91B02"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

5.0 /10