Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:7E53813224DBAD5F0DEFC4D86580FCDE
HistoryAug 26, 2015 - 12:00 a.m.

Symantec Endpoint Protection Manager authentication bypass

2015-08-2600:00:00
SAINT Corporation
download.saintcorporation.com
180

0.616 Medium

EPSS

Percentile

97.8%

JSON

Added: 08/26/2015
CVE: CVE-2015-1486
BID: 76074

Background

Symantec Endpoint Protection, by Symantec Corporation, is an antivirus and personal firewall product designed to be centrally managed in corporate environments by the Symantec Endpoint Protection Manager (SEPM).

Problem

Symantec Endpoint Protection Manager is affected by an authentication bypass vulnerability in the **ResetPassword** action, as well as an authenticated arbitrary file write vulnerability. By exploiting these two vulnerabilities together, a remote, unauthenticated attacker could upload and execute a file containing arbitrary commands.

Resolution

Apply Symantec Endpoint Protection Manager 12.1-RU6-MP1 or higher.

References

[http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&amp;pvid=security_advisory&amp;year=&amp;suid=20150730_00 ](<http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20150730_00
>)
<http://codewhitesec.blogspot.com/2015/07/symantec-endpoint-protection.html&gt;

Limitations

Exploit works on Symantec Endpoint Protection 12.1.

Platforms

Windows

Related

cve 1
cvelist 1
saint 3
checkpoint_advisories 1
prion 1
nvd 1
dsquare 1
zdt 2
packetstorm 1
nessus 2
openvas 1
symantec 1
cve
cve
CVE-2015-1486
2015-08-01 01:59:03
cvelist
cvelist
CVE-2015-1486
2015-08-01 01:00:00
saint
saint
Symantec Endpoint Protection Manager authentication bypass
2015-08-26 00:00:00
Symantec Endpoint Protection Manager authentication bypass
2015-08-26 00:00:00
Symantec Endpoint Protection Manager authentication bypass
2015-08-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Symantec Endpoint Protection ConsoleServlet ResetPassword Policy Bypass (CVE-2015-1486)
2015-10-06 00:00:00
prion
prion
Authentication flaw
2015-08-01 01:59:00
nvd
nvd
CVE-2015-1486
2015-08-01 01:59:03
dsquare
dsquare
Symantec Endpoint Protection Manager File Upload
2018-02-13 00:00:00
zdt
zdt
Symantec Endpoint Protection Manager Authentication Bypass / Code Execution Exploit
2015-08-17 00:00:00
Symantec Endpoint Protection Multiple Vulnerabilities
2015-08-01 00:00:00
packetstorm
packetstorm
Symantec Endpoint Protection Manager Authentication Bypass / Code Execution
2015-08-17 00:00:00
nessus
nessus
Symantec Endpoint Protection Manager < 12.1 RU6 MP1 Multiple Vulnerabilities (SYM15-007)
2015-08-13 00:00:00
Symantec Endpoint Protection Manager 11.x / 12.x < 12.1 RU6 MP1 Multiple Vulnerabilities (SYM15-007)
2015-08-06 00:00:00
openvas
openvas
Symantec Endpoint Protection Manager Multiple Vulnerabilities (Aug 2015)
2015-08-14 00:00:00
symantec
symantec
Symantec Endpoint Protection Multiple Issues
2015-07-30 08:00:00

0.616 Medium

EPSS

Percentile

97.8%

JSON
Related for SAINT:7E53813224DBAD5F0DEFC4D86580FCDE
cve1cvelist1saint3checkpoint_advisories1prion1nvd1dsquare1zdt2packetstorm1nessus2openvas1symantec1