7.2

CVE-2006-3454

EPSS 0.09%
Veröffentlicht 14.09.2006 00:07:00
Zuletzt bearbeitet 16.04.2026 00:27:16
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Multiple format string vulnerabilities in Symantec AntiVirus Corporate Edition 8.1 up to 10.0, and Client Security 1.x up to 3.0, allow local users to execute arbitrary code via format strings in (1) Tamper Protection and (2) Virus Alert Notification messages.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

NVD 15 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Symantec ≫ Client Security Version1.0

Symantec ≫ Client Security Version1.0.1

Symantec ≫ Client Security Version1.1

Symantec ≫ Client Security Version1.1.1

Symantec ≫ Client Security Version2.0

Symantec ≫ Client Security Version2.0.1

Symantec ≫ Client Security Version2.0.2

Symantec ≫ Client Security Version2.0.3

Symantec ≫ Client Security Version2.0.4

Symantec ≫ Client Security Version3.0

Symantec ≫ Norton Antivirus Version8.1 Editioncorporate

Symantec ≫ Norton Antivirus Version9.0 Editioncorporate

Symantec ≫ Norton Antivirus Version9.0.1 Editioncorporate

Symantec ≫ Norton Antivirus Version9.0.2 Editioncorporate

Symantec ≫ Norton Antivirus Version10.0 Editioncorporate

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.09%	0.254

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://layereddefense.com/SAV13SEPT.html

http://secunia.com/advisories/21884

http://securityresponse.symantec.com/avcenter/security/Content/2006.09.13.html

Patch

Vendor Advisory

http://securitytracker.com/id?1016842

http://www.securityfocus.com/archive/1/446041/100/0/threaded

http://www.securityfocus.com/archive/1/446293/100/0/threaded

http://www.securityfocus.com/bid/19986

http://www.vupen.com/english/advisories/2006/3599

https://exchange.xforce.ibmcloud.com/vulnerabilities/28936

https://nvd.nist.gov/vuln/detail/CVE-2006-3454

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-3454

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-3454

EUVD