6.8

CVE-2006-1836

Untrusted search path vulnerability in unspecified components in Symantec LiveUpdate for Macintosh 3.0.0 through 3.5.0 do not set the execution path, which allows local users to gain privileges via a Trojan horse program.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SymantecLiveupdate Version3.0 Editionmacintosh
SymantecLiveupdate Version3.0.1 Editionmacintosh
SymantecLiveupdate Version3.0.2 Editionmacintosh
SymantecLiveupdate Version3.0.3 Editionmacintosh
SymantecLiveupdate Version3.5 Editionmacintosh
SymantecNorton Antivirus Version9.0.0 Editionmacintosh
SymantecNorton Antivirus Version9.0.1 Editionmacintosh
SymantecNorton Antivirus Version9.0.2 Editionmacintosh
SymantecNorton Antivirus Version9.0.3 Editionmacintosh
SymantecNorton Antivirus Version10.0 Editionmacintosh
SymantecNorton Antivirus Version10.0.0 Editionmacintosh
SymantecNorton Antivirus Version10.0.1 Editionmacintosh
SymantecNorton Antivirus Version10.9.1 Editionmacintosh
SymantecNorton Internet Security Version3.0 Editionmacintosh
SymantecNorton Personal Firewall Version3.0 Editionmacintosh
SymantecNorton Personal Firewall Version3.1 Editionmacintosh
SymantecNorton System Works Version3.0 Editionmacintosh
SymantecNorton Utilities Version8.0 Editionmacintosh
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.39% 0.306
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.8 3.1 10
AV:L/AC:L/Au:S/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/19682
Vendor Advisory
http://securityreason.com/securityalert/100
http://securityresponse.symantec.com/avcenter/security/Content/2006.04.17b.html
Patch
http://securitytracker.com/id?1015953
http://www.securityfocus.com/archive/1/431318/100/0/threaded
http://www.securityfocus.com/bid/17571
http://www.vupen.com/english/advisories/2006/1386
https://exchange.xforce.ibmcloud.com/vulnerabilities/25839