CVE-2007-3021
N/A
N/A
Summary
Symantec Reporting Server 1.0.197.0, and other versions before 1.0.224.0, as used in Symantec Client Security 3.1 and later, and Symantec AntiVirus Corporate Edition (SAV CE) 10.1 and later, does not initialize a critical variable, which allows attackers to create arbitrary executable files via unknown manipulations of a file that is created during data export.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.symantec.com/avcenter/security/Content/2007.06.05a.html
- http://www.securityfocus.com/bid/24313
- http://osvdb.org/36109
- http://www.securitytracker.com/id?1018196
- http://www.vupen.com/english/advisories/2007/2074
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34744
- http://secunia.com/advisories/25543
References
- http://www.symantec.com/avcenter/security/Content/2007.06.05a.html
- http://www.securityfocus.com/bid/24313
- http://osvdb.org/36109
- http://www.securitytracker.com/id?1018196
- http://www.vupen.com/english/advisories/2007/2074
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34744
- http://secunia.com/advisories/25543
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.