ByteOS Network

NVD Vulnerability Details :

CVE-2009-0064

Modified

Source-cve@mitre.org

Published At-24 Apr, 2009 | 15:30

Updated At-08 Aug, 2017 | 01:33

Multiple unspecified vulnerabilities in the Control Center in Symantec Brightmail Gateway Appliance before 8.0.1 allow remote authenticated users to gain privileges, and possibly obtain sensitive information or hijack sessions of arbitrary users, via vectors involving (1) administrative scripts or (2) console functions.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	9.0	HIGH	AV:N/AC:L/Au:S/C:C/I:C/A:C

CPE Matches

Symantec Corporation

>>brightmail_gateway_appliance>>Versions up to 8.0(inclusive)

cpe:2.3:h:symantec:brightmail_gateway_appliance:*:*:*:*:*:*:*:*

Symantec Corporation

>>brightmail_gateway_appliance>>7.5

cpe:2.3:h:symantec:brightmail_gateway_appliance:7.5:*:*:*:*:*:*:*

Symantec Corporation

>>brightmail_gateway_appliance>>7.6

cpe:2.3:h:symantec:brightmail_gateway_appliance:7.6:*:*:*:*:*:*:*

Symantec Corporation

>>brightmail_gateway_appliance>>7.7

cpe:2.3:h:symantec:brightmail_gateway_appliance:7.7:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-noinfo	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
http://osvdb.org/53945	cve@mitre.org	N/A
http://secunia.com/advisories/34885	cve@mitre.org	N/A
http://securitytracker.com/id?1022117	cve@mitre.org	Patch
http://www.securityfocus.com/bid/34639	cve@mitre.org	N/A
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090423_01	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2009/1155	cve@mitre.org	Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/50075	cve@mitre.org	N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History