CVE-2009-0064
Published Apr 24, 2009
Last updated 7 years ago
Overview
- Description
- Multiple unspecified vulnerabilities in the Control Center in Symantec Brightmail Gateway Appliance before 8.0.1 allow remote authenticated users to gain privileges, and possibly obtain sensitive information or hijack sessions of arbitrary users, via vectors involving (1) administrative scripts or (2) console functions.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9
- Impact score
- 10
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:symantec:brightmail_gateway_appliance:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "142AC359-363A-4B84-8154-2E6D178E33EB",
"versionEndIncluding": "8.0"
},
{
"criteria": "cpe:2.3:h:symantec:brightmail_gateway_appliance:7.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DC321D15-6374-4D17-A7A7-05257692AA87"
},
{
"criteria": "cpe:2.3:h:symantec:brightmail_gateway_appliance:7.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F74170B9-18E6-4275-BD5C-7223EAA08AD0"
},
{
"criteria": "cpe:2.3:h:symantec:brightmail_gateway_appliance:7.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DDCFFB37-7043-47BB-9906-6D1EFA7B8FC0"
}
],
"operator": "OR"
}
]
}
]