CVE-2009-1432

Symantec AntiVirus Corporate Edition < 10.1 MR8 and 10.2 < MR2 - Arbitrary Text Injection via Login Screen URL Handling

Title source: llm
STIX 2.1

Description

Symantec Reporting Server, as used in Symantec AntiVirus (SAV) Corporate Edition 10.1 before 10.1 MR8 and 10.2 before 10.2 MR2, Symantec Client Security (SCS) before 3.1 MR8, and the Symantec Endpoint Protection Manager (SEPM) component in Symantec Endpoint Protection (SEP) before 11.0 MR2, allows remote attackers to inject arbitrary text into the login screen, and possibly conduct phishing attacks, via vectors involving a URL that is not properly handled.

References (10)

Core 10
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/34935
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/1204
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1022137
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/34856
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1022138
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1022136
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/1202
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/50172
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/34668

Scores

EPSS 0.0380
EPSS Percentile 88.2%

Details

CWE
CWE-20
Status published
Products (4)
symantec/antivirus 10.1 (2 CPE variants)
symantec/antivirus 10.2 (2 CPE variants)
symantec/client_security 3.1 (2 CPE variants)
symantec/endpoint_protection 11.0 (2 CPE variants)
Published Apr 30, 2009
Tracked Since Feb 18, 2026