Lucene search
HistoryMay 23, 2012 - 9:55 p.m.
CVE-2012-0295
symantec
endpoint protection
file-insertion attacks
cve-2012-0295
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.016 Low
EPSS
Percentile
87.4%
The Manager service in the management console in Symantec Endpoint Protection (SEP) 12.1 before 12.1 RU1-MP1 allows remote attackers to conduct file-insertion attacks and execute arbitrary code by leveraging exploitation of CVE-2012-0294.
Affected configurations
Node
symantecendpoint_protectionMatch12.1
ORsymantecendpoint_protectionMatch12.1.671
ORsymantecendpoint_protectionMatch12.1.1000
Related
cvelist
cvelist
CVE-2012-0295
2012-05-23 21:00:00
CVE-2012-0294
2012-05-23 21:00:00
nessus
nessus
prion
prion
Code injection
2012-05-23 21:55:00
Directory traversal
2012-05-23 21:55:00
nvd
nvd
CVE-2012-0295
2012-05-23 21:55:01
CVE-2012-0294
2012-05-23 21:55:01
symantec
symantec
Symantec Endpoint Protection Multiple Issues
2012-05-22 08:00:00
cve
cve
CVE-2012-0294
2012-05-23 21:55:01
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.016 Low
EPSS
Percentile
87.4%
Related for CVE-2012-0295