Symantec.Scan.Engine.Authentication.Bypass
Description
This indicates an attack attempt against an authentication bypass vulnerability in Symantec Scan Engine's web-based interface.
The vulnerability is caused by the application's failure to properly authenticate users to change administrator's password.
Affected Products
Symantec AntiVirus Scan Engine 5.0
Impact
Security Bypass: Remote attackers can bypass security checking of vulnerable systems.
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Vendor has released advisory SYM06-008, containing fixes, to address this issue. Please see its website for further information.
http://www.symantec.com/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |