CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-1431

XFR.EXE in the Intel File Transfer service in the console in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine Server; Symantec AntiVirus (SAV) Corporate Edition 9 before 9.0 MR7, 10.0 and 10.1 before 10.1 MR8, and 10.2 before 10.2 MR2; Symantec Client Security (SCS) 2 before 2.0 MR7 and 3 before 3.1 MR8; and Symantec Endpoint Protection (SEP) before 11.0 MR3, allows remote attackers to execute arbitrary code by placing the code on a (1) share or (2) WebDAV server, and then sending the UNC share pathname to this service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.297

EPSS Ranking 96.3%

CVSS Severity

CVSS v2 Score 9.3

References

Products affected by CVE-2009-1431

Symantec » Antivirus » Version: N/A

cpe:2.3:a:symantec:antivirus:-
Symantec » Antivirus » Version: 10

cpe:2.3:a:symantec:antivirus:10
Symantec » Antivirus » Version: 9.0

cpe:2.3:a:symantec:antivirus:9.0
Symantec » Antivirus Central Quarantine Server » Version: N/A

cpe:2.3:a:symantec:antivirus_central_quarantine_server:-
Symantec » Client Security » Version: N/A

cpe:2.3:a:symantec:client_security:-
Symantec » Client Security » Version: 1.0

cpe:2.3:a:symantec:client_security:1.0
Symantec » Client Security » Version: 1.0.1

cpe:2.3:a:symantec:client_security:1.0.1
Symantec » Client Security » Version: 1.0.1_build_8.01.425a

cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.425a
Symantec » Client Security » Version: 1.0.1_build_8.01.425b

cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.425b
Symantec » Client Security » Version: 1.0.1_build_8.01.429c

cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.429c
Symantec » Client Security » Version: 1.0.1_build_8.01.434

cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.434
Symantec » Client Security » Version: 1.0.1_build_8.01.437

cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.437
Symantec » Client Security » Version: 1.0.1_build_8.01.446

cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.446
Symantec » Client Security » Version: 1.0.1_build_8.01.457

cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.457
Symantec » Client Security » Version: 1.0.1_build_8.01.460

cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.460
Symantec » Client Security » Version: 1.0.1_build_8.01.464

cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.464
Symantec » Client Security » Version: 1.0.1_build_8.01.471

cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.471
Symantec » Client Security » Version: 1.0.1_build_8.01.501

cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.501
Symantec » Client Security » Version: 1.0_build_8.01.9374

cpe:2.3:a:symantec:client_security:1.0_build_8.01.9374
Symantec » Client Security » Version: 1.1.1

cpe:2.3:a:symantec:client_security:1.1.1
Symantec » Client Security » Version: 1.1.1_mr1_build_8.1.1.314a

cpe:2.3:a:symantec:client_security:1.1.1_mr1_build_8.1.1.314a
Symantec » Client Security » Version: 1.1.1_mr2_build_8.1.1.319

cpe:2.3:a:symantec:client_security:1.1.1_mr2_build_8.1.1.319
Symantec » Client Security » Version: 1.1.1_mr3_build_8.1.1.323

cpe:2.3:a:symantec:client_security:1.1.1_mr3_build_8.1.1.323
Symantec » Client Security » Version: 1.1.1_mr4_build_8.1.1.329

cpe:2.3:a:symantec:client_security:1.1.1_mr4_build_8.1.1.329
Symantec » Client Security » Version: 1.1.1_mr5_build_8.1.1.336

cpe:2.3:a:symantec:client_security:1.1.1_mr5_build_8.1.1.336
Symantec » Client Security » Version: 2.0

cpe:2.3:a:symantec:client_security:2.0
Symantec » Client Security » Version: 3.0

cpe:2.3:a:symantec:client_security:3.0
Symantec » Client Security » Version: 3.0.0.359

cpe:2.3:a:symantec:client_security:3.0.0.359
Symantec » Client Security » Version: 3.0.1.1000

cpe:2.3:a:symantec:client_security:3.0.1.1000
Symantec » Client Security » Version: 3.0.1.1001

cpe:2.3:a:symantec:client_security:3.0.1.1001
Symantec » Client Security » Version: 3.0.1.1007

cpe:2.3:a:symantec:client_security:3.0.1.1007
Symantec » Client Security » Version: 3.0.1.1008

cpe:2.3:a:symantec:client_security:3.0.1.1008
Symantec » Client Security » Version: 3.0.2

cpe:2.3:a:symantec:client_security:3.0.2
Symantec » Client Security » Version: 3.0.2.2000

cpe:2.3:a:symantec:client_security:3.0.2.2000
Symantec » Client Security » Version: 3.0.2.2001

cpe:2.3:a:symantec:client_security:3.0.2.2001
Symantec » Client Security » Version: 3.0.2.2002

cpe:2.3:a:symantec:client_security:3.0.2.2002
Symantec » Client Security » Version: 3.0.2.2010

cpe:2.3:a:symantec:client_security:3.0.2.2010
Symantec » Client Security » Version: 3.0.2.2011

cpe:2.3:a:symantec:client_security:3.0.2.2011
Symantec » Client Security » Version: 3.0.2.2020

cpe:2.3:a:symantec:client_security:3.0.2.2020
Symantec » Client Security » Version: 3.0.2.2021

cpe:2.3:a:symantec:client_security:3.0.2.2021
Symantec » Client Security » Version: 3.1

cpe:2.3:a:symantec:client_security:3.1
Symantec » Endpoint Protection » Version: N/A

cpe:2.3:a:symantec:endpoint_protection:-
Symantec » Endpoint Protection » Version: 11

cpe:2.3:a:symantec:endpoint_protection:11
Symantec » Endpoint Protection » Version: 11.0

cpe:2.3:a:symantec:endpoint_protection:11.0
Symantec » System Center » Version: N/A

cpe:2.3:a:symantec:system_center:-
Symantec » System Center » Version: 10.1.6000.6

cpe:2.3:a:symantec:system_center:10.1.6000.6
Symantec » System Center » Version: 10.1.8000.8

cpe:2.3:a:symantec:system_center:10.1.8000.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-1431

Products

Pricing

Contact Us