CVE-2011-0688

CWE-287 — Improper Authentication3 documents3 sources

Severity

9.3CRITICAL

EPSS

2.6%

top 14.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Antivirus Symantec Antivirus Central Quarantine Server Symantec System Center

Timeline

PublishedJan 31

Latest updateMay 17

Description

Intel Alert Management System (aka AMS or AMS2), as used in Symantec Antivirus Corporate Edition (SAVCE) 10.x before 10.1 MR10, Symantec System Center (SSC) 10.x, and Symantec Quarantine Server 3.5 and 3.6, allows remote attackers to execute arbitrary commands via crafted messages over TCP, as discovered by Junaid Bohio, a different vulnerability than CVE-2010-0110 and CVE-2010-0111. NOTE: some of these details are obtained from third party information.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

▶NVDsymantec/system_center10.0, 10.1+1

▶NVDsymantec/antivirus_central_quarantine_server3.5, 3.6+1

▶NVDsymantec/antivirus26 versions+25

🔴Vulnerability Details

GHSA

GHSA-f49g-9gwg-jc3x: Intel Alert Management System (aka AMS or AMS2), as used in Symantec Antivirus Corporate Edition (SAVCE) 10↗2022-05-17

▶

CVEList

CVE-2011-0688: Intel Alert Management System (aka AMS or AMS2), as used in Symantec Antivirus Corporate Edition (SAVCE) 10↗2011-01-31

▶