Lucene search
HistoryAug 01, 2015 - 1:59 a.m.
CVE-2015-1487
cve-2015-1487
symantec
endpoint protection manager
sepm
remote code execution
file write vulnerability
5.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
6.2 Medium
AI Score
Confidence
Low
0.725 High
EPSS
Percentile
98.1%
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP1 allows remote authenticated users to write to arbitrary files, and consequently obtain administrator privileges, via a crafted filename.
Affected configurations
Node
symantecendpoint_protection_managerMatch12.1.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| symantec:endpoint_protection_manager | symantec endpoint protection manager | eq | 12.1.0 |
Related
nvd
nvd
CVE-2015-1487
2015-08-01 01:59:04
prion
prion
Code injection
2015-08-01 01:59:00
cvelist
cvelist
CVE-2015-1487
2015-08-01 01:00:00
checkpoint_advisories
checkpoint_advisories
zdt
zdt
Symantec Endpoint Protection Manager Authentication Bypass / Code Execution Exploit
2015-08-17 00:00:00
Symantec Endpoint Protection Multiple Vulnerabilities
2015-08-01 00:00:00
packetstorm
packetstorm
Symantec Endpoint Protection Manager Authentication Bypass / Code Execution
2015-08-17 00:00:00
nessus
nessus
openvas
openvas
Symantec Endpoint Protection Manager Multiple Vulnerabilities (Aug 2015)
2015-08-14 00:00:00
symantec
symantec
Symantec Endpoint Protection Multiple Issues
2015-07-30 08:00:00
5.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
6.2 Medium
AI Score
Confidence
Low
0.725 High
EPSS
Percentile
98.1%
Related for CVE-2015-1487