Lucene search

K
SymantecEndpoint Protection11.0.6100

8 matches found

CVE
CVE
added 2012/05/23 9:55 p.m.48 views

CVE-2012-0289

Buffer overflow in Symantec Endpoint Protection (SEP) 11.0.600x through 11.0.710x and Symantec Network Access Control (SNAC) 11.0.600x through 11.0.710x allows local users to gain privileges, and modify data or cause a denial of service, via a crafted script.

7.2CVSS6.7AI score0.00559EPSS
CVE
CVE
added 2014/01/10 4:47 p.m.47 views

CVE-2013-5009

The Management Console in Symantec Endpoint Protection (SEP) 11.x before 11.0.7.4 and 12.x before 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x before 12.1.2 RU2 does not properly perform authentication, which allows remote authenticated users to gain privileges by leveraging acces...

7.4CVSS6.6AI score0.00302EPSS
CVE
CVE
added 2014/01/10 4:47 p.m.47 views

CVE-2013-5011

Unquoted Windows search path vulnerability in the client in Symantec Endpoint Protection (SEP) 11.x before 11.0.7.4 and 12.x before 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x before 12.1.2 RU2 allows local users to gain privileges via a crafted program in the %SYSTEMDRIVE% direc...

7.2CVSS8.4AI score0.00057EPSS
CVE
CVE
added 2012/05/24 12:55 a.m.46 views

CVE-2012-1821

The Network Threat Protection module in the Manager component in Symantec Endpoint Protection (SEP) 11.0.600x through 11.0.700x on Windows Server 2003 allows remote attackers to cause a denial of service (web-server outage, or daemon crash or hang) via a flood of packets that triggers automated blo...

5CVSS6.8AI score0.01934EPSS
CVE
CVE
added 2012/12/18 8:55 p.m.43 views

CVE-2012-4348

The management console in Symantec Endpoint Protection (SEP) 11.0 before RU7-MP3 and 12.1 before RU2, and Symantec Endpoint Protection Small Business Edition 12.x before 12.1 RU2, does not properly validate input for PHP scripts, which allows remote authenticated users to execute arbitrary code via...

7.2CVSS8.6AI score0.00681EPSS
CVE
CVE
added 2011/08/15 7:55 p.m.41 views

CVE-2011-0550

Multiple cross-site scripting (XSS) vulnerabilities in the Web Interface in the Endpoint Protection Manager in Symantec Endpoint Protection (SEP) 11.0.600x through 11.0.6300 allow remote attackers to inject arbitrary web script or HTML via (1) the token parameter to portal/Help.jsp or (2) the URI i...

4.3CVSS5.7AI score0.00719EPSS
CVE
CVE
added 2014/01/10 4:47 p.m.39 views

CVE-2013-5010

The Application/Device Control (ADC) component in the client in Symantec Endpoint Protection (SEP) 11.x before 11.0.7.4 and 12.x before 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x before 12.1.2 RU2 does not properly handle custom polices, which allows local users to bypass intend...

4.6CVSS6.2AI score0.00072EPSS
CVE
CVE
added 2011/08/15 7:55 p.m.36 views

CVE-2011-0551

Cross-site request forgery (CSRF) vulnerability in the Web Interface in the Endpoint Protection Manager in Symantec Endpoint Protection (SEP) 11.0.600x through 11.0.6300 allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts.

6.8CVSS7.2AI score0.00264EPSS