Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4350

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2012-4350
Last Modified 13 Mar 2013 11:10:17
Published 18 Dec 2012 03:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2012-4350

Summary

Multiple unquoted Windows search path vulnerabilities in the (1) Manager and (2) Agent components in Symantec Enterprise Security Manager (ESM) before 11.0 allow local users to gain privileges via unspecified vectors.

Vulnerable Systems

Application

  • Symantec Enterprise Security Manager 10.0

  • Symantec Enterprise Security Manager 6.0

  • Symantec Enterprise Security Manager 6.5

  • Symantec Enterprise Security Manager 6.5.0

  • Symantec Enterprise Security Manager 6.5.1

  • Symantec Enterprise Security Manager 6.5.2

  • Symantec Enterprise Security Manager 6.5.3

  • Symantec Enterprise Security Manager 9.0

  • Symantec Enterprise Security Manager 9.0.1


References

CONFIRM - http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20121213_00

BID - 56915

CONFIRM - http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20121213_00

SECTRACK - 1027874


Last Updated: 27 May 2016 10:55:05