CERTA-2004-AVI-009

Vulnerability from certfr_avis - Published: - Updated:

L'utilitaire de mise à jour LiveUpdate possède une vulnérabilité qui permet à un utilisateur local mal intentionné, sous certaines conditions, d'élever ses privilèges sur le système.

Description

L'utilitaire de mise à jour LiveUpdate est inclus dans de nombreux produits Symantec et permet d'effectuer des mises à jour automatiques de tous les produits Symantec.

Lorsqu'une session interactive LiveUpdate est disponible, un utilisateur local mal intentionné peut, grâce à l'interface graphique, élever ses propres privilèges.

Solution

Mettre à jour l'utilitaire LiveUpdate en téléchargeant la version 2.0

http://www.symantec.com/techsupp/files/lu/lu.html
None
Impacted products
Vendor Product Description
Symantec N/A Symantec Norton AntiVirus et Norton AntiVirus Pro 2001-2004 ;
Symantec N/A Symantec AntiVirus pour Handhelds v3.0.
Symantec N/A Symantec Norton SystemWorks 2001-2004 ;
Symantec N/A Symantec LiveUpdate versions 1.70.x à 1.90.x ;
Symantec N/A Symantec Norton Internet Security et Norton Internet Security Pro 2001-2004 ;
References

Show details on source website
To clipboard 

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Symantec Norton AntiVirus et Norton AntiVirus Pro 2001-2004 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec AntiVirus pour Handhelds v3.0.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Norton SystemWorks 2001-2004 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec LiveUpdate versions 1.70.x \u00e0 1.90.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Norton Internet Security et Norton Internet Security Pro 2001-2004 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nL\u0027utilitaire de mise \u00e0 jour LiveUpdate est inclus dans de nombreux\nproduits Symantec et permet d\u0027effectuer des mises \u00e0 jour automatiques de\ntous les produits Symantec.\n\nLorsqu\u0027une session interactive LiveUpdate est disponible, un utilisateur\nlocal mal intentionn\u00e9 peut, gr\u00e2ce \u00e0 l\u0027interface graphique, \u00e9lever ses\npropres privil\u00e8ges.\n\n## Solution\n\nMettre \u00e0 jour l\u0027utilitaire LiveUpdate en t\u00e9l\u00e9chargeant la version 2.0\n\n    http://www.symantec.com/techsupp/files/lu/lu.html\n",
  "cves": [],
  "links": [
    {
      "title": "Avis de Symantec SYM04-001",
      "url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.01.12.html"
    }
  ],
  "reference": "CERTA-2004-AVI-009",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2004-01-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "L\u0027utilitaire de mise \u00e0 jour LiveUpdate poss\u00e8de une vuln\u00e9rabilit\u00e9 qui\npermet \u00e0 un utilisateur local mal intentionn\u00e9, sous certaines\nconditions, d\u0027\u00e9lever ses privil\u00e8ges sur le syst\u00e8me.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans l\u0027utilitaire LiveUpdate de Symantec",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Avis Symantec SYM04-001",
      "url": null
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.