Remote Command Execution Vulnerability in Symantec Antivirus and Related Products
CVE-2011-0688

Currently unrated

Key Information:

Vendor: Symantec
Status: Antivirus
Vendor: CVE Published:; 31 January 2011

Summary

A vulnerability exists in Symantec Antivirus Corporate Edition, Symantec System Center, and Symantec Quarantine Server, which allows remote attackers to execute arbitrary commands. This is facilitated through specially crafted messages sent over TCP, revealing potential security weaknesses. Users are advised to apply necessary updates and patches to mitigate risks associated with this vulnerability.

References

http://secunia.com/advisories/43099

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/65071

vdb-entryx_refsource_XF

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

Timeline

Vulnerability published
Jan 31, 2011
Vulnerability Reserved
Jan 31, 2011