Vulnerability Description
Intel Alert Management System (aka AMS or AMS2), as used in Symantec Antivirus Corporate Edition (SAVCE) 10.x before 10.1 MR10, Symantec System Center (SSC) 10.x, and Symantec Quarantine Server 3.5 and 3.6, allows remote attackers to execute arbitrary commands via crafted messages over TCP, as discovered by Junaid Bohio, a different vulnerability than CVE-2010-0110 and CVE-2010-0111. NOTE: some of these details are obtained from third party information.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Antivirus | 10.0 |
| Symantec | System Center | 10.0 |
| Symantec | Antivirus Central Quarantine Server | 3.5 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/43099Vendor Advisory
- http://securitytracker.com/id?1024996
- http://www.securityfocus.com/bid/45936
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit
- http://www.vupen.com/english/advisories/2011/0234Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/65071
- http://secunia.com/advisories/43099Vendor Advisory
- http://securitytracker.com/id?1024996
- http://www.securityfocus.com/bid/45936
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit
- http://www.vupen.com/english/advisories/2011/0234Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/65071
FAQ
What is CVE-2011-0688?
CVE-2011-0688 is a vulnerability with a CVSS score of 9.3 (HIGH). Intel Alert Management System (aka AMS or AMS2), as used in Symantec Antivirus Corporate Edition (SAVCE) 10.x before 10.1 MR10, Symantec System Center (SSC) 10.x, and Symantec Quarantine Server 3.5 an...
How severe is CVE-2011-0688?
CVE-2011-0688 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-0688?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Antivirus, Symantec System Center, Symantec Antivirus Central Quarantine Server.