Vulnerability Description
Unspecified vulnerability in Symantec Reporting Server 1.0.197.0, and other versions before 1.0.224.0, as used in Symantec Client Security 3.1 and later, and Symantec AntiVirus Corporate Edition (SAV CE) 10.1 and later, allows attackers to "disable the authentication system" and bypass authentication via unknown vectors.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Client Security | 3.1 |
| Symantec | Norton Antivirus | 10.0.2.2021 |
| Symantec | Reporting Server | <= 1.0.197.0 |
References
- http://osvdb.org/36107
- http://secunia.com/advisories/25543
- http://www.securityfocus.com/bid/24325
- http://www.securitytracker.com/id?1018196
- http://www.symantec.com/avcenter/security/Content/2007.06.05.html
- http://www.vupen.com/english/advisories/2007/2074
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34895
- http://osvdb.org/36107
- http://secunia.com/advisories/25543
- http://www.securityfocus.com/bid/24325
- http://www.securitytracker.com/id?1018196
- http://www.symantec.com/avcenter/security/Content/2007.06.05.html
- http://www.vupen.com/english/advisories/2007/2074
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34895
FAQ
What is CVE-2007-3095?
CVE-2007-3095 is a vulnerability with a CVSS score of 9.0 (HIGH). Unspecified vulnerability in Symantec Reporting Server 1.0.197.0, and other versions before 1.0.224.0, as used in Symantec Client Security 3.1 and later, and Symantec AntiVirus Corporate Edition (SAV ...
How severe is CVE-2007-3095?
CVE-2007-3095 has been rated HIGH with a CVSS base score of 9.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-3095?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Client Security, Symantec Norton Antivirus, Symantec Reporting Server.