CVE-2009-0064

Multiple unspecified vulnerabilities in the Control Center in Symantec Brightmail Gateway Appliance before 8.0.1 allow remote authenticated users to gain privileges, and possibly obtain sensitive information or hijack sessions of arbitrary users, via vectors involving (1) administrative scripts or (2) console functions.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 80%
VendorProductVersion
symantecbrightmail_gateway_appliance
𝑥
≤ 8.0
symantecbrightmail_gateway_appliance
7.5
symantecbrightmail_gateway_appliance
7.6
symantecbrightmail_gateway_appliance
7.7
𝑥
= Vulnerable software versions
References
http://osvdb.org/53945
http://secunia.com/advisories/34885
http://securitytracker.com/id?1022117
http://www.securityfocus.com/bid/34639
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090423_01
http://www.vupen.com/english/advisories/2009/1155
https://exchange.xforce.ibmcloud.com/vulnerabilities/50075
http://osvdb.org/53945
http://secunia.com/advisories/34885
http://securitytracker.com/id?1022117
http://www.securityfocus.com/bid/34639
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090423_01
http://www.vupen.com/english/advisories/2009/1155
https://exchange.xforce.ibmcloud.com/vulnerabilities/50075