Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-1429

CWE-94Code Injection7 documents6 sources
Severity
10.0CRITICAL
EPSS
90.0%
top 0.42%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
3
Symantec AntivirusSymantec Client SecuritySymantec Endpoint Protection
Timeline
PublishedApr 29
Latest updateMay 2

Description

The Intel LANDesk Common Base Agent (CBA) in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine Server; Symantec AntiVirus (SAV) Corporate Edition 9 before 9.0 MR7, 10.0 and 10.1 before 10.1 MR8, and 10.2 before 10.2 MR2; Symantec Client Security (SCS) 2 before 2.0 MR7 and 3 before 3.1 MR8; and Symantec Endpoint Protection (SEP) before 11.0 MR3, allows remote attackers to execute arbitrary commands

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages3 packages

NVDsymantec/antivirus9.0+15

🔴Vulnerability Details

2
GHSA
GHSA-8c9c-m8qr-pq2x: The Intel LANDesk Common Base Agent (CBA) in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Se2022-05-02
CVEList
CVE-2009-1429: The Intel LANDesk Common Base Agent (CBA) in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Se2009-04-29

💥Exploits & PoCs

2
Exploit-DB
Symantec System Center Alert Management System - 'xfr.exe' Arbitrary Command Execution (Metasploit)2011-08-19
Exploit-DB
Symantec (Multiple Products) - Intel Common Base Agent Remote Command Execution2009-04-28

📋Vendor Advisories

1
Red Hat
mutt: SSL host name check may be skipped when verifying certificate chain2011-03-08
CVE-2009-1429 (CRITICAL CVSS 10) | The Intel LANDesk Common Base Agent | cvebase.io