Vulnerabilities > CVE-2006-0232 - Remote vulnerability in Symantec Antivirus Scan Engine 5.0.0.24
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Symantec Scan Engine 5.0.0.24, and possibly other versions before 5.1.0.7, stores sensitive log and virus definition files under the web root with insufficient access control, which allows remote attackers to obtain the information via direct requests.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Nessus
NASL family | CGI abuses |
NASL id | SYMANTEC_SCAN_ENGINE_MULTIPLE.NASL |
description | The remote host appears to be running Symantec Scan Engine. This version of Scan Engine is vulnerable to several flaws that could allow a remote attacker to take control of the scan engine. The following flaws are present: - Fixed HTTPS certificate key - Configuration file retrieval (with administrator password hash) - Possibility to change the administrator password |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 21271 |
published | 2006-04-24 |
reporter | This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/21271 |
title | Symantec AntiVirus Scan Engine Web Interface Multiple Remote Vulnerabilities |
code |
|
References
- http://archives.neohapsis.com/archives/vulnwatch/2006-q2/0012.html
- http://secunia.com/advisories/19734
- http://securityreason.com/securityalert/758
- http://securityreason.com/securityalert/759
- http://securitytracker.com/id?1015974
- http://www.securityfocus.com/archive/1/431728/100/0/threaded
- http://www.securityfocus.com/archive/1/431734/100/0/threaded
- http://www.securityfocus.com/bid/17637
- http://www.symantec.com/avcenter/security/Content/2006.04.21.html
- http://www.vupen.com/english/advisories/2006/1464
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25974