Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 1.3.6.1.4.1.25623.1.0.806004 |
Category: | General |
Title: | Symantec Endpoint Protection Manager Multiple Vulnerabilities August15 |
Summary: | This host is installed with Symantec; Endpoint Protection Manager and is prone to multiple vulnerabilities. |
Description: | Summary: This host is installed with Symantec Endpoint Protection Manager and is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - Untrusted search path vulnerability in the client in SEP. - SQL injection vulnerability in the management console in SEPM. - Directory traversal vulnerability in the management console in SEPM. - Some other vulnerabilities in SEPM. Vulnerability Impact: Successful exploitation will allow local and remote users to gain privileges and remote authenticated users to execute arbitrary commands, to read arbitrary files, to write to arbitrary files and to bypass authentication. Affected Software/OS: Symantec Endpoint Protection Manager versions 12.1 before 12.1-RU6-MP1. Solution: Upgrade to Symantec Endpoint Protection Manager 12.1 RU6 MP1. CVSS Score: 8.5 CVSS Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C |
Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2015-1492 BugTraq ID: 76083 http://www.securityfocus.com/bid/76083 http://www.securitytracker.com/id/1033165 Common Vulnerability Exposure (CVE) ID: CVE-2015-1491 BugTraq ID: 76079 http://www.securityfocus.com/bid/76079 Common Vulnerability Exposure (CVE) ID: CVE-2015-1490 BugTraq ID: 76081 http://www.securityfocus.com/bid/76081 Common Vulnerability Exposure (CVE) ID: CVE-2015-1489 BugTraq ID: 76078 http://www.securityfocus.com/bid/76078 https://www.exploit-db.com/exploits/37812/ Common Vulnerability Exposure (CVE) ID: CVE-2015-1488 BugTraq ID: 76077 http://www.securityfocus.com/bid/76077 Common Vulnerability Exposure (CVE) ID: CVE-2015-1487 BugTraq ID: 76094 http://www.securityfocus.com/bid/76094 Common Vulnerability Exposure (CVE) ID: CVE-2015-1486 BugTraq ID: 76074 http://www.securityfocus.com/bid/76074 |
Copyright | Copyright (C) 2015 Greenbone Networks GmbH |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |