CVE-2009-0064
Severity Score
9.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple unspecified vulnerabilities in the Control Center in Symantec Brightmail Gateway Appliance before 8.0.1 allow remote authenticated users to gain privileges, and possibly obtain sensitive information or hijack sessions of arbitrary users, via vectors involving (1) administrative scripts or (2) console functions.
Múltiples vulnerabilidades no especificadas en el Centro de Control de Symantec Brightmail Gateway Appliance antes de v8.0.1 permiten a los usuarios remotos autenticados obtener privilegios, y posiblemente obtener información sensible o el secuestro arbitrario de sesiones de los usuarios, a través de vectores relacionados con (1) secuencias de comandos administrativos o (2) funciones de la consola.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-01-07 CVE Reserved
- 2009-04-24 CVE Published
- 2023-06-12 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/53945 | Vdb Entry | |
| http://secunia.com/advisories/34885 | Third Party Advisory | |
| http://www.securityfocus.com/bid/34639 | Vdb Entry | |
| http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090423_01 | X_refsource_confirm | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/50075 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://securitytracker.com/id?1022117 | 2017-08-08 | |
| http://www.vupen.com/english/advisories/2009/1155 | 2017-08-08 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Symantec Search vendor "Symantec" | Brightmail Gateway Appliance Search vendor "Symantec" for product "Brightmail Gateway Appliance" | <= 8.0 Search vendor "Symantec" for product "Brightmail Gateway Appliance" and version " <= 8.0" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Brightmail Gateway Appliance Search vendor "Symantec" for product "Brightmail Gateway Appliance" | 7.5 Search vendor "Symantec" for product "Brightmail Gateway Appliance" and version "7.5" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Brightmail Gateway Appliance Search vendor "Symantec" for product "Brightmail Gateway Appliance" | 7.6 Search vendor "Symantec" for product "Brightmail Gateway Appliance" and version "7.6" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Brightmail Gateway Appliance Search vendor "Symantec" for product "Brightmail Gateway Appliance" | 7.7 Search vendor "Symantec" for product "Brightmail Gateway Appliance" and version "7.7" | - |
Affected
| ||||||