10 matches found
Symantec Endpoint Protection Manager - Remote Command Execution Exploit
No description provided by source. import argparse import httplib Exploit Title: Symantec Endpoint Protection Manager Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-5014, CVE-2013-5015 Date: February 22, 2014 Vendor Homepage:...
Symantec Endpoint Protection Manager - Remote Command Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/exploit/powershell' class Metasploit3 'Symantec Endpoint Protection Manager Remote Command Execution', 'Description' = %q This module...
Symantec Endpoint Protection Manager Remote Command Execution
import argparse import httplib """ Exploit Title: Symantec Endpoint Protection Manager Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-5014, CVE-2013-5015 Date: February 22, 2014 Vendor Homepage: http://www.symantec.com/endpoint-protection Version: 11.0, 12.0, 12...
Symantec Endpoint Protection Manager 11.012.012.1 - Remote Command Execution
Symantec Endpoint Protection Manager 11.012.012.1 - Remote Command Execution import argparse import httplib """ Exploit Title: Symantec Endpoint Protection Manager Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-5014, CVE-2013-5015 Date: February 22, 2014 Vendor...
CVE-2013-5015
creationtimestamp| type| source ---|---|--- 2014-02-23 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31853 2014-02-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31917 2018-05-29 15:50:33+00:00| seen|...
Symantec Endpoint Protection Manager 11.0/12.0/12.1 - Remote Command Execution
import argparse import httplib """ Exploit Title: Symantec Endpoint Protection Manager Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-5014, CVE-2013-5015 Date: February 22, 2014 Vendor Homepage: http://www.symantec.com/endpoint-protection Version: 11.0, 12.0, 12...
Symantec Endpoint Protection Manager本地SQL注入漏洞(CVE-2013-5015)
BUGTRAQ ID: 65467 CVECAN ID: CVE-2013-5015 Symantec Endpoint Protection SEP是反病毒和防火墙产品。 Symantec Endpoint Protection Manager 11.0、Symantec Endpoint Protection Center Small Business Edition 12.0、Symantec Endpoint Protection Manager 12.1版本没有有效过滤数据库的本地请求,恶意本地用户可利用此漏洞注入任意SQL数据库查询。 0 Symantec Web Gatew...
Symantec Endpoint Protection Manager < 11.0 RU7-MP4a / 12.1 RU4a Multiple Vulnerabilities (SYM14-004)
The version of Symantec Endpoint Protection Manager SEPM running on the remote host is either 11.x prior to 11.0 RU7-MP4a or 12.x prior to 12.1 RU4a. It is, therefore, affected by multiple vulnerabilities: - SEPM is affected by an XML external entity injection vulnerability due to a failure to...
CVE-2013-5015
CVE-2013-5015 affects Symantec Endpoint Protection Manager (SEPM) and related components. The vulnerability is a SQL injection in the management console that, when exploited by remote authenticated users, can cause arbitrary SQL commands to be executed. Affected versions in the initial data inclu...
Symantec Endpoint Protection Manager Vulnerabilities
SUMMARY The management console for Symantec Endpoint Protection Manager does not properly handle external XML data, which could potentially allow unauthorized access to restricted server-side data and console management functionality. The management console for Symantec Endpoint Protection Manage...