CVE-2007-2279

The Scheduler Service (VxSchedService.exe) in Symantec Storage Foundation for Windows 5.0 allows remote attackers to bypass authentication and execute arbitrary code via certain requests to the service socket that create (1) PreScript or (2) PostScript registry values under Veritas\VxSvc\CurrentVersion\Schedules specifying future command execution.
Configurations

Configuration 1 (hide)

cpe:2.3:a:symantec:veritas_storage_foundation:5.0:*:windows:*:*:*:*:*

History

No history.

Information

Published : 2007-06-04 16:30

Updated : 2024-02-28 11:01


NVD link : CVE-2007-2279

Mitre link : CVE-2007-2279

CVE.ORG link : CVE-2007-2279


JSON object : View

Products Affected

symantec

  • veritas_storage_foundation
CWE
CWE-264

Permissions, Privileges, and Access Controls