CVE-2007-2279

Currently unrated

Key Information:

Vendor: Symantec
Status: Veritas Storage Foundation
Vendor: CVE Published:; 4 June 2007

Summary

The Scheduler Service (VxSchedService.exe) in Symantec Storage Foundation for Windows 5.0 allows remote attackers to bypass authentication and execute arbitrary code via certain requests to the service socket that create (1) PreScript or (2) PostScript registry values under Veritas\VxSvc\CurrentVersion\Schedules specifying future command execution.

References

http://www.symantec.com/avcenter/security/Content/2007.06...

x_refsource_CONFIRM

http://secunia.com/advisories/25537

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/archive/1/470562/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Jun 4, 2007
Vulnerability Reserved
Apr 26, 2007