9.3

CVE-2007-2279

EPSS 6.89%
Published 04.06.2007 16:30:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

The Scheduler Service (VxSchedService.exe) in Symantec Storage Foundation for Windows 5.0 allows remote attackers to bypass authentication and execute arbitrary code via certain requests to the service socket that create (1) PreScript or (2) PostScript registry values under Veritas\VxSvc\CurrentVersion\Schedules specifying future command execution.

Affected products Warnungen 0 Metrics 2 CWE 0 References 12

Data is provided by the National Vulnerability Database (NVD)

Symantec ≫ Veritas Storage Foundation Version5.0 Editionwindows

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	6.89%	0.91

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

http://osvdb.org/36104

http://secunia.com/advisories/25537

Vendor Advisory

http://seer.entsupport.symantec.com/docs/288627.htm

http://www.securityfocus.com/archive/1/470562/100/0/threaded

http://www.securityfocus.com/bid/24194

http://www.securitytracker.com/id?1018188

http://www.symantec.com/avcenter/security/Content/2007.06.01.html

Patch

Vendor Advisory

http://www.vupen.com/english/advisories/2007/2035

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/34680

https://nvd.nist.gov/vuln/detail/CVE-2007-2279

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-2279

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-2279

EUVD