CVE-2012-0300

Published Jul 5, 2012

Last updated 12 years ago

Overview

Description: Brightmail Control Center in Symantec Message Filter 6.3 does not properly restrict establishment of sessions to the listening port, which allows remote attackers to obtain potentially sensitive version information via unspecified vectors.
Source: cve@mitre.org
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 3.3
Impact score: 2.9
Exploitability score: 6.5
Vector string: AV:A/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-264

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:message_filter:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6FC5499F-B394-44C8-BFBA-798225AB60EC",
            "versionEndIncluding": "6.3"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References