CVE-2009-1432

CWE-20 — Improper Input Validation3 documents3 sources

Severity

5.0MEDIUM

EPSS

3.9%

top 11.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Antivirus Symantec Client Security Symantec Endpoint Protection

Timeline

PublishedApr 30

Latest updateMay 2

Description

Symantec Reporting Server, as used in Symantec AntiVirus (SAV) Corporate Edition 10.1 before 10.1 MR8 and 10.2 before 10.2 MR2, Symantec Client Security (SCS) before 3.1 MR8, and the Symantec Endpoint Protection Manager (SEPM) component in Symantec Endpoint Protection (SEP) before 11.0 MR2, allows remote attackers to inject arbitrary text into the login screen, and possibly conduct phishing attacks, via vectors involving a URL that is not properly handled.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶NVDsymantec/endpoint_protection11.0

▶NVDsymantec/client_security3.1

▶NVDsymantec/antivirus10.1, 10.2+1

🔴Vulnerability Details

GHSA

GHSA-6rqj-5hx6-m9vf: Symantec Reporting Server, as used in Symantec AntiVirus (SAV) Corporate Edition 10↗2022-05-02

▶

CVEList

CVE-2009-1432: Symantec Reporting Server, as used in Symantec AntiVirus (SAV) Corporate Edition 10↗2009-04-30

▶