CVE-2007-3800

high

Description

Unspecified vulnerability in the Real-time scanner (RTVScan) component in Symantec AntiVirus Corporate Edition 9.0 through 10.1 and Client Security 2.0 through 3.1, when the Notification Message window is enabled, allows local users to gain privileges via crafted code.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/35352

http://www.vupen.com/english/advisories/2007/2506

http://www.securityfocus.com/bid/24810

http://securityresponse.symantec.com/avcenter/security/Content/2007.07.11c.html

http://secunia.com/advisories/26054

http://osvdb.org/36116

Details

Source: Mitre, NVD

Published: 2007-07-16

Updated: 2017-07-29

Risk Information

CVSS v2

Base Score: 6

Vector: CVSS2#AV:L/AC:H/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High