Vulnerability Name:

CVE-2007-3800 (CCN-35352)

Assigned:2007-07-11
Published:2007-07-11
Updated:2017-07-29
Summary:Unspecified vulnerability in the Real-time scanner (RTVScan) component in Symantec AntiVirus Corporate Edition 9.0 through 10.1 and Client Security 2.0 through 3.1, when the Notification Message window is enabled, allows local users to gain privileges via crafted code.
CVSS v3 Severity:8.1 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:6.0 Medium (CVSS v2 Vector: AV:L/AC:H/Au:S/C:C/I:C/A:C)
4.5 Medium (Temporal CVSS v2 Vector: AV:L/AC:H/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): High
Authentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
6.2 Medium (CCN CVSS v2 Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C)
4.6 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2007-3800

Source: OSVDB
Type: UNKNOWN
36116

Source: CCN
Type: SA26054
Symantec Products Real-Time Scanner Notification Window Privilege Escalation

Source: SECUNIA
Type: Vendor Advisory
26054

Source: CCN
Type: SYM07-017
Symantec AntiVirus Corporate Edition Local Elevation of Privilege

Source: CONFIRM
Type: UNKNOWN
http://securityresponse.symantec.com/avcenter/security/Content/2007.07.11c.html

Source: CCN
Type: OSVDB ID: 36116
Symantec Multiple Products Real-time Scanner (RTVScan) Notification Message Local Privilege Escalation

Source: BID
Type: UNKNOWN
24810

Source: CCN
Type: BID-24810
Symantec AntiVirus Corporate Edition Local Privilege Escalation Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2007-2506

Source: XF
Type: UNKNOWN
symantec-antivirus-rtv-privilege-escalation(35352)

Source: XF
Type: UNKNOWN
symantec-antivirus-rtv-privilege-escalation(35352)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:symantec:client_security:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:client_security:2.1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:client_security:*:*:*:*:*:*:*:* (Version <= 3.0)
  • OR cpe:/a:symantec:norton_antivirus:9.0:*:corporate:*:*:*:*:*
  • OR cpe:/a:symantec:norton_antivirus:10.0:*:corporate:*:*:*:*:*
  • OR cpe:/a:symantec:norton_antivirus:*:*:corporate:*:*:*:*:* (Version <= 10.1)

    • Configuration CCN 1:
  • cpe:/a:symantec:client_security:2.0::scf_7.1:*:*:*:*:*
  • OR cpe:/a:symantec:client_security:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:client_security:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:antivirus:10.0::corporate:*:*:*:*:*
  • OR cpe:/a:symantec:antivirus:9.0:-:corporate:*:*:*:*:*
  • OR cpe:/a:symantec:antivirus:10.1::corporate:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    symantec client security 2.0
    symantec client security 2.1
    symantec client security *
    symantec norton antivirus 9.0
    symantec norton antivirus 10.0
    symantec norton antivirus *
    symantec client security 2.0
    symantec client security 3.0
    symantec client security 3.1
    symantec antivirus 10.0
    symantec antivirus 9.0 -
    symantec antivirus 10.1