| VID |
23163 |
| Severity |
40 |
| Port |
8004 |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The Symantec AntiVirus Scan Engine is vulnerable to multiple vulnerabilities which exist in versions prior to 5.1.0.7. Symantec Scan Engine is a TCP/IP server and programming interface that enables third party applications to incorporate Symantec content scanning and virus definition support into their proprietary applications. Symantec Scan Engine version 5.0.x.x could allow remote attackers to:
- bypass authentication and gain complete control of the application
- conduct man-in-the-middle attacks
- gain access to the potentially sensitive contents of arbitrary files contained in the application's installation directory
* References:
http://www.rapid7.com/advisories/R7-0021.html
http://www.rapid7.com/advisories/R7-0022.html
http://www.rapid7.com/advisories/R7-0023.html
* Platforms Affected:
Symantec Scan Engine 5.0.x.x
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of Symantec Scan Engine (5.1.0.7 or later), as listed in Symantec Security Advisory SYM06-008 at http://www.symantec.com/avcenter/security/Content/2006.04.21.html |
| Related URL |
CVE-2006-0230,CVE-2006-0231,CVE-2006-0232 (CVE) |
| Related URL |
17637 (SecurityFocus) |
| Related URL |
25972,25973,25974 (ISS) |
|
