Vulnerability Description
Untrusted search path vulnerability in unspecified components in Symantec LiveUpdate for Macintosh 3.0.0 through 3.5.0 do not set the execution path, which allows local users to gain privileges via a Trojan horse program.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Liveupdate | 3.0 |
| Symantec | Norton Antivirus | 9.0.0 |
| Symantec | Norton Internet Security | 3.0 |
| Symantec | Norton Personal Firewall | 3.0 |
| Symantec | Norton System Works | 3.0 |
| Symantec | Norton Utilities | 8.0 |
References
- http://secunia.com/advisories/19682Vendor Advisory
- http://securityreason.com/securityalert/100
- http://securityresponse.symantec.com/avcenter/security/Content/2006.04.17b.htmlPatch
- http://securitytracker.com/id?1015953
- http://www.securityfocus.com/archive/1/431318/100/0/threaded
- http://www.securityfocus.com/bid/17571
- http://www.vupen.com/english/advisories/2006/1386
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25839
- http://secunia.com/advisories/19682Vendor Advisory
- http://securityreason.com/securityalert/100
- http://securityresponse.symantec.com/avcenter/security/Content/2006.04.17b.htmlPatch
- http://securitytracker.com/id?1015953
- http://www.securityfocus.com/archive/1/431318/100/0/threaded
- http://www.securityfocus.com/bid/17571
- http://www.vupen.com/english/advisories/2006/1386
FAQ
What is CVE-2006-1836?
CVE-2006-1836 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Untrusted search path vulnerability in unspecified components in Symantec LiveUpdate for Macintosh 3.0.0 through 3.5.0 do not set the execution path, which allows local users to gain privileges via a ...
How severe is CVE-2006-1836?
CVE-2006-1836 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1836?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Liveupdate, Symantec Norton Antivirus, Symantec Norton Internet Security, Symantec Norton Personal Firewall, Symantec Norton System Works.