Vulnerabilities > CVE-2006-0231 - Remote vulnerability in Symantec Antivirus Scan Engine 5.0.0.24
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Symantec Scan Engine 5.0.0.24, and possibly other versions before 5.1.0.7, uses the same private DSA key for each installation, which allows remote attackers to conduct man-in-the-middle attacks and decrypt communications.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Nessus
NASL family | CGI abuses |
NASL id | SYMANTEC_SCAN_ENGINE_MULTIPLE.NASL |
description | The remote host appears to be running Symantec Scan Engine. This version of Scan Engine is vulnerable to several flaws that could allow a remote attacker to take control of the scan engine. The following flaws are present: - Fixed HTTPS certificate key - Configuration file retrieval (with administrator password hash) - Possibility to change the administrator password |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 21271 |
published | 2006-04-24 |
reporter | This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/21271 |
title | Symantec AntiVirus Scan Engine Web Interface Multiple Remote Vulnerabilities |
code |
|
References
- http://archives.neohapsis.com/archives/vulnwatch/2006-q2/0011.html
- http://secunia.com/advisories/19734
- http://securitytracker.com/id?1015974
- http://www.securityfocus.com/archive/1/431725/100/0/threaded
- http://www.securityfocus.com/archive/1/431734/100/0/threaded
- http://www.securityfocus.com/bid/17637
- http://www.symantec.com/avcenter/security/Content/2006.04.21.html
- http://www.vupen.com/english/advisories/2006/1464
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25973