CVE-2006-1836
Untrusted search path vulnerability in unspecified components in Symantec LiveUpdate for Macintosh 3.0.0 through 3.5.0 do not set the execution path, which allows local users to gain privileges via a Trojan horse program.
| Software | From | Fixed in |
|---|---|---|
| symantec / liveupdate | 3.5 | 3.5.x |
| symantec / norton_antivirus | 9.0.0 | 9.0.0.x |
| symantec / norton_antivirus | 9.0.2 | 9.0.2.x |
| symantec / norton_antivirus | 10.0.0 | 10.0.0.x |
| symantec / norton_antivirus | 9.0.3 | 9.0.3.x |
| symantec / norton_antivirus | 10.0.1 | 10.0.1.x |
| symantec / norton_personal_firewall | 3.1 | 3.1.x |
| symantec / norton_personal_firewall | 3.0 | 3.0.x |
| symantec / norton_system_works | 3.0 | 3.0.x |
| symantec / liveupdate | 3.0 | 3.0.x |
| symantec / liveupdate | 3.0.3 | 3.0.3.x |
| symantec / norton_antivirus | 10.0 | 10.0.x |
| symantec / liveupdate | 3.0.1 | 3.0.1.x |
| symantec / norton_utilities | 8.0 | 8.0.x |
| symantec / norton_antivirus | 10.9.1 | 10.9.1.x |
| symantec / norton_antivirus | 9.0.1 | 9.0.1.x |
| symantec / norton_internet_security | 3.0 | 3.0.x |
| symantec / liveupdate | 3.0.2 | 3.0.2.x |
- http://secunia.com/advisories/19682
- http://securityreason.com/securityalert/100
- http://securityresponse.symantec.com/avcenter/security/Content/2006.04.17b.html
- http://securitytracker.com/id?1015953
- http://www.securityfocus.com/archive/1/431318/100/0/threaded
- http://www.securityfocus.com/bid/17571
- http://www.vupen.com/english/advisories/2006/1386
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25839
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime