SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   Symantec Reporting Server Vendors:   Symantec
Symantec Reporting Server Lets Remote Users Execute Arbitrary Code or Obtain the Administrative Password
SecurityTracker Alert ID:  1018196
SecurityTracker URL:  http://securitytracker.com/id/1018196
CVE Reference:   CVE-2007-3021, CVE-2007-3022   (Links to External Site)
Date:  Jun 5 2007
Impact:   Disclosure of authentication information, Execution of arbitrary code via network, Modification of system information, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 1.0.197.0
Description:   Two vulnerabilities were reported in Symantec Reporting Server. A remote user can execute arbitrary code on the target system. A remote user can determine the administrative password.

A remote user can modify a file that is created when exporting data from the Reporting Server to be an executable file [CVE-2007-3021]. Then, the remote user can execute the file with the privileges of the target service.

Symantec credits Ertunga Arsal of Tech Data GmbH & Co. OHG with reporting this vulnerability.

A remote user can obtain the hashed administrative password during a failed login attempt [CVE-2007-3022]. Then, the remote user can use this hashed password to gain administrative access to the target Reporting Server.

Symantec credits Mikko Korppi with reporting this vulnerability.

Impact:   A remote user can execute arbitrary code on the target system.

A remote user can determine the administrative password.

Solution:   The vendor has issued a fixed version (1.0.224.0).

The fixed version is included within Symantec AntiVirus Corporate Edition 10.1 MR6 build 6000 (10.1.6.6000) or later and within Symantec Client Security 3.1 MR6 build 6000 (3.1.6.6000) or later.

The Symantec advisories are available at:

http://securityresponse.symantec.com/avcenter/security/Content/2007.06.05.html
http://securityresponse.symantec.com/avcenter/security/Content/2007.06.05a.html

Vendor URL:  securityresponse.symantec.com/avcenter/security/Content/2007.06.05.html (Links to External Site)
Cause:   Access control error
Underlying OS:  Windows (Any)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC