CVE-2016-3647

CVE-2016-3647 is a vulnerability in Symantec Endpoint Protection Manager (SEPM) 12.1.x before RU6 MP5 where an authenticated remote user can trigger a server-side request forgery (SSRF) via a crafted request to the management console’s authentication interface, potentially enabling access to inte...

CVE-2016-3648

CVE-2016-3648. Affects Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5. A flaw in the Authentication Lock protection mechanism lets remote authenticated users bypass the lock, enabling brute-force password guessing against management-console accounts by entering data into the auth...

CVE-2016-3649

Symantec Endpoint Protection Manager (SEPM) 12.1.x before RU6 MP5 is vulnerable to CVE-2016-3649, where remote authenticated administrators can enumerate other administrator accounts by sending modified GET requests to the SEPM interface. The issue is categorized under information-disclosure via ...

CVE-2016-3651

CVE-2016-3651 affects Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5. The issue is that remote authenticated users can discover the PHP JSESSIONID value on the web server via unspecified vectors. The vulnerability is listed among multiple SEPM issues and is associated with sessio...

CVE-2016-3653

CVE-2016-3653 is a CSRF vulnerability in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to RU6 MP5. A remote, authenticated attacker can exploit weaknesses in management scripts to hijack the authentication of arbitrary users. The issue is documented across multiple sources (NVD entry and...

CVE-2016-5304

Open redirect vulnerability (CVE-2016-5304) in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5. An authenticated remote attacker could exploit an open redirect in the externalurl.php path to send users to arbitrary sites, enabling phishing and potential session/credential exposure...

CVE-2016-5306

CVE-2016-5306 affects Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5. The vulnerability is an information disclosure caused by failure to enable HTTP Strict Transport Security on port 8445, enabling remote observers to sniff HTTP traffic and obtain sensitive data. Affected produc...

CVE-2016-5307

Summary: CVE-2016-5307 is a directory traversal vulnerability in the Symantec Endpoint Protection Manager (SEPM) management console, affecting SEPM 12.1 installations prior to 12.1 RU6 MP5. The issue permits remote authenticated users to read arbitrary files within the web-root directory tree via...

CVE-2016-3648

Symantec Endpoint Protection Manager SEPM 12.1 before RU6 MP5 allows remote authenticated users to bypass the Authentication Lock protection mechanism, and conduct brute-force password-guessing attacks against management-console accounts, by entering data into the authorization window...

CVE-2016-3651

Symantec Endpoint Protection Manager SEPM 12.1 before RU6 MP5 allows remote authenticated users to discover the PHP JSESSIONID value via unspecified vectors...

CVE-2016-3652

Multiple cross-site scripting XSS vulnerabilities in management scripts in Symantec Endpoint Protection Manager SEPM 12.1 before RU6 MP5 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

CVE-2016-3653

Multiple cross-site request forgery CSRF vulnerabilities in management scripts in Symantec Endpoint Protection Manager SEPM 12.1 before RU6 MP5 allow remote authenticated users to hijack the authentication of arbitrary users...

CVE-2016-5304

Open redirect vulnerability in a report-routing component in Symantec Endpoint Protection Manager SEPM 12.1 before RU6 MP5 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...

CVE-2016-5305

Multiple cross-site scripting XSS vulnerabilities in management scripts in Symantec Endpoint Protection Manager SEPM 12.1 before RU6 MP5 allow remote authenticated users to inject arbitrary web script or HTML via a "DOM link manipulation" attack...

CVE-2016-5306

Symantec Endpoint Protection Manager SEPM 12.1 before RU6 MP5 does not properly implement the HSTS protection mechanism, which makes it easier for remote attackers to obtain sensitive information by sniffing the network for unintended HTTP traffic on port 8445...

CVE-2016-5307

Directory traversal vulnerability in Symantec Endpoint Protection Manager SEPM 12.1 before RU6 MP5 allows remote authenticated users to read arbitrary files in the web-root directory tree via unspecified vectors...

Symantec Endpoint Protection Manager 12.1.x < 12.1 RU6 MP5 Multiple Vulnerabilities (SYM16-011)

The version of Symantec Endpoint Protection Manager SEPM installed on the remote host is prior to 12.1 RU6 MP5. It is, therefore, affected by the following vulnerabilities : - A race condition exists in the SEP client that allows a local attacker to bypass security restrictions, resulting in the...

Symantec Endpoint Protection Manager and Client Design Vulnerability

Symantec Endpoint Protection SEP is a suite of antivirus software from Symantec Corporation. The software provides security across physical and virtual systems.SEP Manager and Client are the management and client software. A design flaw exists in the management console of Symantec Endpoint...

Symantec Endpoint Protection Manager Cross-Site Request Forgery Vulnerability

Symantec Endpoint Protection Manager SEPM is a suite of enterprise-grade virus protection software from Symantec USA. The software protects against malicious attacks such as viruses, worms, and Trojan horses. A cross-site request forgery vulnerability exists in SEPM version 12.1. An attacker coul...

Symantec Endpoint Protection Manager Cross-Site Scripting Vulnerability (CNVD-2016-04421)

Symantec Endpoint Protection Manager SEPM is a suite of enterprise-grade virus protection software from Symantec USA. The software protects against malicious attacks such as viruses, worms, and Trojan horses. A cross-site scripting vulnerability exists in SEPM version 12.1. An attacker can exploi...