You are here

V-117: Symantec Enterprise Vault for File System Archiving Unquoted Search Path Lets Local Users Gain Elevated Privileges

March 22, 2013 - 6:00am

Addthis

PROBLEM:

A vulnerability was reported in Symantec Enterprise Vault

PLATFORM:

Versions prior to Enterprise Vault 9.0.4 and 10.0.1 are vulnerable.

ABSTRACT:

Symantec Enterprise Vault (EV) for File System Archiving has an unquoted search path in the File Collector and File PlaceHolder services

REFERENCE LINKS:

SecurityTracker Alert ID: 1028330
Symantec Security Advisories SYM13-003
SecurityFocus ID: 58617
CVE-2013-1609

IMPACT ASSESSMENT:

Medium

DISCUSSION:

This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system.

IMPACT:

Execution of arbitrary code via local system
Root access via local system

SOLUTION:

The vendor recommends updating to latest software version

Addthis