Lucene search

[email protected]CVE-2014-9227

HistorySep 20, 2015 - 8:59 p.m.

CVE-2014-9227

2015-09-2020:59:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

2014

9227

untrusted search path

vulnerability

symantec endpoint protection

sep

manager

trojan horse dll

local users

privileges

nvd

6.9 Medium

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

25.8%

JSON

Multiple untrusted search path vulnerabilities in the Manager component in Symantec Endpoint Protection (SEP) before 12.1.6 allow local users to gain privileges via a Trojan horse DLL in an unspecified directory.

CPENameOperatorVersion
symantec:endpoint_protectionsymantec endpoint protectionle12.1.5

CPE	Name	Operator	Version
symantec:endpoint_protection	symantec endpoint protection	le	12.1.5

References

www.securityfocus.com/bid/75203

www.securitytracker.com/id/1032616

www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20150617_00

6.9 Medium

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

25.8%

JSON

Related for CVE-2014-9227

cvelist1 prion1 nessus1 symantec1 openvas1