NuytsTech Security

CVE-2006-0230

by ·

Symantec Scan Engine 5.0.0.24, and possibly other versions before 5.1.0.7, uses a client-side check to verify a password, which allows remote attackers to gain administrator privileges via a modified client that sends certain XML requests.

Date published : 2006-04-24

http://www.securityfocus.com/bid/17637

http://www.securityfocus.com/archive/1/431724/100/0/threaded

Tags: