Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0064

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2009-0064
Last Modified 06 Feb 2013 11:13:43
Published 24 Apr 2009 11:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2009-0064

Summary

Multiple unspecified vulnerabilities in the Control Center in Symantec Brightmail Gateway Appliance before 8.0.1 allow remote authenticated users to gain privileges, and possibly obtain sensitive information or hijack sessions of arbitrary users, via vectors involving (1) administrative scripts or (2) console functions.

Vulnerable Systems


References

VUPEN - ADV-2009-1155

CONFIRM - http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090423_01

SECTRACK - 1022117

XF - brightmail-consolescripts-priv-escalation(50075)

BID - 34639

SECUNIA - 34885

OSVDB - 53945

CONFIRM - http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090423_01


Last Updated: 27 May 2016 11:01:48