← Back

CVE-2007-3021

nvd nist
Published: Jun 5, 2007Modified: Apr 23, 2026

JSON object

Loading...
7.5
Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 10.0 / Impact: 6.4
Source: NVD

Description

Symantec Reporting Server 1.0.197.0, and other versions before 1.0.224.0, as used in Symantec Client Security 3.1 and later, and Symantec AntiVirus Corporate Edition (SAV CE) 10.1 and later, does not initialize a critical variable, which allows attackers to create arbitrary executable files via unknown manipulations of a file that is created during data export.

Affected (11)

Symantec
3 products
Client Security
Norton Antivirus
Reporting Server
Configuration A
11 vulnerable
Vulnerable SoftwareAffected Versions
Symantec
Client Security
Version 3.1.394
Client Security
Version 3.1.396
Client Security
Version 3.1.400
Client Security
Version 3.1.401
Client Security
Version 3.1
Symantec
Norton Antivirus
Version 10.0.2.2021
Norton Antivirus
Version 10.1.396
Norton Antivirus
Version 10.1.400
Norton Antivirus
Version 10.1.401
Norton Antivirus
Version 10.1
Reporting Server
Up to 1.0.197.0

References (14)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.