Vulnerabilities > CVE-2007-3022 - Information Disclosure vulnerability in Symantec Client Security, Norton Antivirus and Reporting Server
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Symantec Reporting Server 1.0.197.0, and other versions before 1.0.224.0, as used in Symantec Client Security 3.1 and later, and Symantec AntiVirus Corporate Edition (SAV CE) 10.1 and later, displays the password hash for a user after a failed login attempt, which makes it easier for remote attackers to conduct brute force attacks.
Vulnerable Configurations
Nessus
| NASL family | CGI abuses |
| NASL id | SYMANTEC_REPORTING_SERVER_1_0_224.NASL |
| description | The remote host is running Symantec Reporting Server, a web-based tool for creating reports about Symantec enterprise antivirus products. The version of Symantec Reporting Server installed on the remote host allows a remote attacker to bypass authentication to various scripts and gain access to the application. Additionally, it reportedly allows a user to create a malicious executable in the process of exporting data. This could, in turn, be executed in the context of the web server user, and may display the administrator |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 25458 |
| published | 2007-06-08 |
| reporter | This script is Copyright (C) 2007-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/25458 |
| title | Symantec Reporting Server < 1.0.224.0 Multiple Vulnerabilities |
References
- http://osvdb.org/36108
- http://secunia.com/advisories/25543
- http://www.securityfocus.com/bid/24312
- http://www.securitytracker.com/id?1018196
- http://www.symantec.com/avcenter/security/Content/2007.06.05.html
- http://www.vupen.com/english/advisories/2007/2074
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34740