6.8
CVE-2008-0313
- EPSS 6.22%
- Veröffentlicht 08.04.2008 17:05:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
The ActiveDataInfo.LaunchProcess method in the SymAData.ActiveDataInfo.1 ActiveX control 2.7.0.1 in SYMADATA.DLL in multiple Symantec Norton products including Norton 360 1.0, AntiVirus 2006 through 2008, Internet Security 2006 through 2008, and System Works 2006 through 2008, does not properly determine the location of the AutoFix Tool, which allows remote attackers to execute arbitrary code via a remote (1) WebDAV or (2) SMB share.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Symantec ≫ Norton 360 Version1.0
Symantec ≫ Norton Antivirus Version2006
Symantec ≫ Norton Antivirus Version2007
Symantec ≫ Norton Antivirus Version2008
Symantec ≫ Norton Internet Security Version2006
Symantec ≫ Norton Internet Security Version2007
Symantec ≫ Norton Internet Security Version2008
Symantec ≫ System Works Version2006
Symantec ≫ System Works Version2007
Symantec ≫ System Works Version2008
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 6.22% | 0.9 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|