Vulnerability Description
Race condition in the Symantec Enterprise Security Manager (ESM) 6.5.3 managers and agents on Windows before 20070524 allows remote attackers to cause a denial of service (CPU consumption and application hang) via certain network scans to ESM ports.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | All Windows | All versions |
| Symantec | Enterprise Security Manager | 6.5.3 |
References
- http://osvdb.org/35077
- http://secunia.com/advisories/25390PatchVendor Advisory
- http://securityresponse.symantec.com/avcenter/security/Content/2007.05.24a.htmlPatch
- http://securityresponse.symantec.com/avcenter/security/Content/2007.05.24b.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/24123
- http://www.securitytracker.com/id?1018120
- http://www.vupen.com/english/advisories/2007/1940
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34507
- http://osvdb.org/35077
- http://secunia.com/advisories/25390PatchVendor Advisory
- http://securityresponse.symantec.com/avcenter/security/Content/2007.05.24a.htmlPatch
- http://securityresponse.symantec.com/avcenter/security/Content/2007.05.24b.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/24123
- http://www.securitytracker.com/id?1018120
- http://www.vupen.com/english/advisories/2007/1940
FAQ
What is CVE-2007-2896?
CVE-2007-2896 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Race condition in the Symantec Enterprise Security Manager (ESM) 6.5.3 managers and agents on Windows before 20070524 allows remote attackers to cause a denial of service (CPU consumption and applicat...
How severe is CVE-2007-2896?
CVE-2007-2896 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-2896?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft All Windows, Symantec Enterprise Security Manager.