CVE-2006-3072

M4 Macro Library in Symantec Security Information Manager before 4.0.2.29 HOTFIX 1 allows local users to execute arbitrary commands via crafted "rule definitions", which produces dangerous Java code during M4 transformation.

Date published : 2006-06-19

http://www.securityfocus.com/bid/18420

http://securityresponse.symantec.com/avcenter/security/Content/2006.06.13b.html