5 matches found
Symantec Endpoint Protection Manager authentication bypass
Added: 08/26/2015 CVE: CVE-2015-1486 BID: 76074 Background Symantec Endpoint Protection, by Symantec Corporation, is an antivirus and personal firewall product designed to be centrally managed in corporate environments by the Symantec Endpoint Protection Manager SEPM. Problem Symantec Endpoint...
CVE-2015-1486
creationtimestamp| type| source ---|---|--- 2015-08-18 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/37812 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/sepmauthbypassrce.rb 2025-02-06 03:13:42+00:00| see...
Symantec Endpoint Protection Manager - Authentication Bypass / Code Execution (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Symantec Endpoint Protection Manager Authentication Bypass and Code Execution', 'Description' = %q This module exploits three separa...
CVE-2015-1486
The management console in Symantec Endpoint Protection Manager SEPM 12.1 before 12.1-RU6-MP1 allows remote attackers to bypass authentication via a crafted password-reset action that triggers a new administrative session...
CVE-2015-1486
CVE-2015-1486 affects Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1, enabling remote authentication bypass via a crafted password-reset action that creates a new admin session. Related materials show exploit paths (e.g., Metasploit module, exploit-db entry) indicating pra...