Lucene search

K
saintSAINT CorporationSAINT:45CE4FFC463D53C01F466061A94C2555
HistoryFeb 24, 2014 - 12:00 a.m.

Symantec Endpoint Protection Manager XXE and SQL Injection Vulnerabilities

2014-02-2400:00:00
SAINT Corporation
download.saintcorporation.com
36

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.832 High

EPSS

Percentile

98.1%

Added: 02/24/2014
CVE: CVE-2013-5014
BID: 65466
OSVDB: 103306

Background

Symantec Endpoint Protection, by Symantec Corporation, is an antivirus and personal firewall product designed to be centrally managed in corporate environments by the Symantec Endpoint Protection Manager (SEPM). The SEPM management console listens on TCP port 9090.

Problem

The management console for Symantec Endpoint Protection Manager is vulnerable to External XML Entity (XXE) injection (CVE-2013-5014) due to improper sanitization of external XML data. This vulnerability could potentially allow unauthorized access to restricted server-side data and console management functionality. Symantec Endpoint Protection Manager’s management console is also vulnerable to SQL injection (CVE-2013-5015) due to insufficient sanitization of local queries made against the backend database. The XXE injection vulnerability can be leveraged to exploit the local access SQL injection vulnerability.

Resolution

Apply the updates as described in Symantec Security Advisory SYM14-004.

References

<http://www.zdnet.com/attackers-scanning-for-symantec-endpoint-protection-manager-flaw-7000026418/&gt;
<http://secunia.com/advisories/cve_reference/CVE-2013-5014/&gt;
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5015&gt;
<http://secunia.com/advisories/cve_reference/CVE-2013-5015/&gt;
<http://osvdb.org/show/osvdb/103306&gt;

Limitations

This exploit was tested against the default Symantec Endpoint Protection Manager installation using embedded database on Windows Server 2003.

Platforms

Windows

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.832 High

EPSS

Percentile

98.1%

Related for SAINT:45CE4FFC463D53C01F466061A94C2555