9.3

CVE-2007-2279

EPSS 6.89%
Veröffentlicht 04.06.2007 16:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The Scheduler Service (VxSchedService.exe) in Symantec Storage Foundation for Windows 5.0 allows remote attackers to bypass authentication and execute arbitrary code via certain requests to the service socket that create (1) PreScript or (2) PostScript registry values under Veritas\VxSvc\CurrentVersion\Schedules specifying future command execution.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Symantec ≫ Veritas Storage Foundation Version5.0 Editionwindows

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	6.89%	0.91

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

http://osvdb.org/36104

http://secunia.com/advisories/25537

Vendor Advisory

http://seer.entsupport.symantec.com/docs/288627.htm

http://www.securityfocus.com/archive/1/470562/100/0/threaded

http://www.securityfocus.com/bid/24194

http://www.securitytracker.com/id?1018188

http://www.symantec.com/avcenter/security/Content/2007.06.01.html

Patch

Vendor Advisory

http://www.vupen.com/english/advisories/2007/2035

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/34680

https://nvd.nist.gov/vuln/detail/CVE-2007-2279

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-2279

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-2279

EUVD