CENTER.HU groups
CENTER.HU address

User:

Guest

www.center.hu / Archive / Security news / june, 2005 / Symantec Brightmail AntiSpam static password vulnerability 

Symantec Brightmail AntiSpam static password vulnerability

Symantec Brightmail AntiSpam static password vulnerability

Date Discovered: 2005. május 31.
Date Published: 2005. június 1.
Last Updated: 2005. június 1.



Threat Assessment

Overall Risk: Medium
Impact: High
Popularity: Medium
Simplicity: Medium

Vulnerability Description

Vulnerability ID: 32976
Discovered By: anonymous
Exploitable Locally: No
Exploitable Remotely: Yes
Impact: Remote attackers can gain access to the database or configuration.
Root Cause: Software Vulnerability



Symantec Brightmail AntiSpam in certain instances contains a vulnerability that can allow a remote attacker to access database or configuration settings. The vulnerability is due to a static database password. A remote attacker can gain administrative access to the database or access to configuration settings.

Recommendations


Symantec Brightmail AntiSpam 6.0.2
Upgrade to Symantec Brightmail AntiSpam 6.0.2 or later.


Affected Technologies
Symantec Corporation: Brightmail Anti-Spam 6.0
Symantec Corporation: Symantec BrightMail AntiSpam 4.0
Symantec Corporation: Symantec BrightMail AntiSpam 5.5


More information on CA Virus Information Center
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=32976

Computer Associates – the Trusted Source of Security Knowledge

Back



Copyright © CENTER.HU Ltd, 2000-2010. All rights reserved

sitemap | privacy policy |

copyrights | new pages |

terms of purchase | contact us


PARTNERS: Computerworld.hu | GameStar.hu | PCWorld.hu | SG.hu | PC Guru | Hitel