Privilege Escalation Vulnerabilities in Symantec Brightmail Gateway Appliance
CVE-2009-0064

Currently unrated

Key Information:

Vendor: Symantec
Status: Brightmail Gateway Appliance
Vendor: CVE Published:; 24 April 2009

Summary

Multiple unspecified vulnerabilities in the Control Center of the Symantec Brightmail Gateway Appliance prior to version 8.0.1 allow remote authenticated users to elevate their privileges. This may lead to unauthorized access to sensitive data or the possibility of session hijacking for any user on the system. The vulnerabilities arise from various vectors, particularly administrative scripts and console functions, which can be exploited to gain control over the system.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/50075

vdb-entryx_refsource_XF

http://securitytracker.com/id?1022117

vdb-entryx_refsource_SECTRACK

http://www.vupen.com/english/advisories/2009/1155

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Apr 24, 2009
Vulnerability Reserved
Jan 7, 2009