Auth bypass in Symantec Antivirus

CVE-2011-0688

Intel Alert Management System (aka AMS or AMS2), as used in Symantec Antivirus Corporate Edition (SAVCE) 10.x before 10.1 MR10, Symantec System Center (SSC) 10.x, and Symantec Quarantine Server 3.5 and 3.6, allows remote attackers to execu…

Vulnerability class: Broken Authentication

EPSS: 0.020 (84.2th percentile) — read the EPSS interpretation.

Affected products

Symantec Antivirus — versions 10.0, 10.0.1, 10.0.1.1
Symantec Antivirus_central_quarantine_server — versions 3.5, 3.6
Symantec System_center — versions 10.0, 10.1
N/a — versions n/a

Weakness classification (CWE)

CWE-287 — Improper Authentication

References

43099 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
symantec-tcp-command-execution(65071) (vdb-entry, x_refsource_XF)
cve@mitre.org (x_refsource_CONFIRM)
1024996 (vdb-entry, x_refsource_SECTRACK)
45936 (vdb-entry, x_refsource_BID)
ADV-2011-0234 (vdb-entry, x_refsource_VUPEN, Vendor Advisory)