69 matches found
Symantec Endpoint Protection Security Update
Summary Symantec, A Division of Broadcom has released updates to address issues that were discovered in the Symantec Endpoint Protection SEP and Symantec Endpoint Protection Manager SEPM products. Affected Products Symantec Endpoint Protection Manager SEPM --- CVE | Affected Versions | Remediatio...
CVE-2020-5831
Symantec Endpoint Protection Manager SEPM, prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program...
CVE-2020-5827
Symantec Endpoint Protection Manager SEPM, prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program...
Out-of-bounds
Symantec Endpoint Protection Manager SEPM, prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program...
CVE-2020-5831
Symantec Endpoint Protection Manager (SEPM) is affected by CVE-2020-5831, a local, out-of-bounds read vulnerability present in SEPM prior to 14.2 RU2 MP1 (and pre-14.2 RU2 MP1 refresh noted in the advisories). Exploitation could allow a local attacker to read memory outside allocated bounds via t...
CVE-2020-5830
Symantec Endpoint Protection Manager SEPM, prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program...
CVE-2020-5830
Symantec Endpoint Protection Manager (SEPM) is affected by CVE-2020-5830, an out-of-bounds read vulnerability in SEPM prior to 14.2 RU2 MP1. The issue allows memory reading beyond allocated bounds in SEPM (and is part of multiple SEPM/SEP hardening advisories). The ZDI advisory specifies an infor...
CVE-2020-5829
CVE-2020-5829 affects Symantec Endpoint Protection Manager (SEPM) prior to 14.2 RU2 MP1 . It is an out-of-bounds read vulnerability in SEPM (notably via the secars.dll path) that can allow a local attacker to read memory outside allocated bounds. An attacker would need to execute low-privilege co...
CVE-2020-5828
CVE-2020-5828 affects Symantec Endpoint Protection Manager (SEPM) prior to 14.2 RU2 MP1, with an out-of-bounds vulnerability (read beyond allocated memory). ZDI details indicate it enables a local attacker who has code execution privileges to achieve an information disclosure by reading memory ou...
CVE-2020-5827
CVE-2020-5827 affects Symantec Endpoint Protection Manager (SEPM) prior to 14.2 RU2 MP1. The issue is an out-of-bounds read vulnerability, with sources describing an attack path in which an unauthenticated or low-privilege scenario could disclose memory contents or be leveraged alongside other fl...
CVE-2019-12759
CVE-2019-12759 affects Symantec Endpoint Protection Manager (SEPM) and Symantec Mail Security for Exchange (SMSMSE) prior to SEPM 14.2 RU2 and SMSMSE 7.5.x, introducing a privilege-escalation flaw. Technical details point to the LuComServer stDisScriptEngine class as the root cause, enabling loca...
CVE-2018-18368
Symantec Endpoint Protection Manager SEPM, prior to 14.2 RU1, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an...
CVE-2018-18368
Symantec Endpoint Protection Manager (SEPM) is affected by a local privilege escalation vulnerability (CVE-2018-18368) that exists in SEPM prior to 14.2 RU1. An attacker with local access could gain elevated privileges. Remediation is to upgrade to SEPM/SEP 14.2 RU1 (or RU2 where applicable) and ...
CVE-2018-18368
Symantec Endpoint Protection Manager SEPM, prior to 14.2 RU1, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an...
Symantec Endpoint Protection Multiple Issues
SUMMARY Symantec has released updates to address issues that were discovered in the Symantec Endpoint Protection SEP, Symantec Endpoint Protection Manager SEPM, Symantec Endpoint Protection Small Business Edition SEP SBE and Symantec Mail Security for MS Exchange SMSMSE products. AFFECTED PRODUCT...
Rockwell Automation 2094-SEPM-B24-S
Binary data 753969.prm...
CVE-2018-18367
CVE-2018-18367 affects Symantec Endpoint Protection Manager (SEPM) prior to and including 12.1 RU6 MP9 and prior to 14.2 RU1, with a DLL preloading vulnerability when the application loads a DLL for execution and a malicious DLL is provided. The entry contains no public details on exploitation in...
CVE-2016-3653
Multiple cross-site request forgery CSRF vulnerabilities in management scripts in Symantec Endpoint Protection Manager SEPM 12.1 before RU6 MP5 allow remote authenticated users to hijack the authentication of arbitrary users...
CVE-2016-3650
Symantec Endpoint Protection Manager SEPM 12.1 before RU6 MP5 allows remote authenticated users to discover credentials via a brute-force attack...
CVE-2016-3648
Symantec Endpoint Protection Manager SEPM 12.1 before RU6 MP5 allows remote authenticated users to bypass the Authentication Lock protection mechanism, and conduct brute-force password-guessing attacks against management-console accounts, by entering data into the authorization window...