CVE-2010-0111

critical

Description

HDNLRSVC.EXE in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (aka AMS or AMS2), as used in Symantec AntiVirus Corporate Edition (SAVCE) 10.x before 10.1 MR10, Symantec System Center (SSC) 10.x, and Symantec Quarantine Server 3.5 and 3.6, allows remote attackers to execute arbitrary programs by sending msgsys.exe a UNC share pathname, which is used directly in a CreateProcessA (aka CreateProcess) call.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/64943

https://exchange.xforce.ibmcloud.com/vulnerabilities/64942

http://www.zerodayinitiative.com/advisories/ZDI-11-029

http://www.vupen.com/english/advisories/2011/0234

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2011&suid=20110126_01

http://www.securityfocus.com/bid/45935

http://securitytracker.com/id?1024997

http://secunia.com/advisories/43106

http://secunia.com/advisories/43099

Details

Source: Mitre, NVD

Published: 2011-01-31

Updated: 2017-08-17

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical