Symantec Antivirus Software Detection and Status

critical Nessus Plugin ID 21725

Synopsis

An antivirus application is installed on the remote host.

Description

A Symantec antivirus application is installed on the remote host.

Note that this plugin checks that the application is running properly and that its latest virus definitions are loaded.

Solution

Ensure that updates are working and the associated services are running.

Plugin Details

Severity: Critical

ID: 21725

File Name: savce_installed.nasl

Version: 1.1735

Type: local

Agent: windows

Family: Windows

Published: 6/16/2006

Updated: 2/1/2022

Asset Inventory: true

Supported Sensors: Nessus Agent

Risk Information

CVSS Score Rationale: Manual cvss score represents risk of having out-of-date virus signatures

VPR

Risk Factor: Medium

Score: 6.5

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: manual

CVSS v3

Risk Factor: Critical

Base Score: 10

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:2.3:a:symantec:endpoint_protection:*:*:*:*:*:*:*:*, cpe:2.3:a:symantec:antivirus:*:*:*:*:*:*:*:*, cpe:2.3:a:symantec:sonar:*:*:*:*:*:*:*:*

Required KB Items: SMB/name, SMB/login, SMB/password, SMB/Services/Enumerated, SMB/registry_full_access, SMB/transport

Reference Information

IAVT: 0001-T-0879