CVE-2006-3072

Published Jun 19, 2006
Last updated 3 months ago
CVSS info 4.6
Overview

Description: M4 Macro Library in Symantec Security Information Manager before 4.0.2.29 HOTFIX 1 allows local users to execute arbitrary commands via crafted "rule definitions", which produces dangerous Java code during M4 transformation.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 4.6
Impact score: 6.4
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:P/A:P
Weaknesses

nvd@nist.gov: NVD-CWE-Other
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8C16F58-1721-4B17-AA1F-02E20980820C"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD93DCC8-8AAC-4B61-B3D5-9375C9C06D58"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44D7CE75-747E-4384-B000-40F068CE2A4A"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3AAD9B35-AAF0-4E4E-97BF-62CC91807A8F"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C5CA0863-4D5E-4EF7-86E3-6025691C6051"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0AEA684D-2D2E-4A23-AC35-21838198773F"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0BBD60A-5EC7-4F0A-A8B4-D284FE42FB8A"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B13AB5D-20DD-416D-8364-F6F30E254A29"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0FEC51C7-A00E-4E19-AFC5-0FAEDB1BA565"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "268026EA-1460-47B7-B2E6-9957CED871CC"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E14E6CAB-3B7F-4D53-A8C2-C321405C9AC0"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A081EF8-2315-4628-B7C4-F2E03E9D9213"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E43189F8-A352-431F-BAB5-A565DC4EA554"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F59F3EB-14BE-4D10-80F0-775769C6F980"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42F11D5E-D201-469C-B738-C18D65B8A4ED"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "72FBA84C-1ABD-46B3-96D0-042304EC9213"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F3709D0-0070-414F-B66D-C52DDD9F0650"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "270A46FF-2DA2-4B69-9075-9A3CBA22267E"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7CF7EAA1-36E3-43A2-AE88-8BCA5D876645"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A93EA02A-4C0E-49CD-BB26-9333489D4F82"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C2BF1AC-97EE-4D7F-913F-5B8A8F2C0B87"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "89581951-8161-45A4-AC9D-236B40E17566"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD9DA0EE-0019-47AB-9583-4C1894E5618D"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E512464F-2A97-4B0C-B3C7-F3E131820855"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.24:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1AD7ECCE-9588-4251-B927-51BB9C282AB6"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B3A8217A-43B3-4268-A9C8-E3BB787B5227"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.26:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35FB0A6A-A3CF-4150-AC8B-E6BA86387312"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.27:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0253C96B-D94F-4CEB-8E5B-11BBF05E528E"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.28:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19680827-92F6-4BE2-8F14-E0A0D24A9F6C"
          },
          {
            "criteria": "cpe:2.3:a:symantec:security_information_manager:4.0.2.29:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C08174AC-0BFE-42E6-8DA6-E5016216553A"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
