Lucene search
SymantecCVE-2015-1487HistoryAug 01, 2015 - 1:59 a.m.
CVE-2015-1487
2015-08-0101:59:04
CWE-20
symantec
web.nvd.nist.gov
33
cve-2015-1487
symantec
endpoint protection manager
sepm
remote code execution
file write vulnerability
CVSS2
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0.725
Percentile
98.1%
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP1 allows remote authenticated users to write to arbitrary files, and consequently obtain administrator privileges, via a crafted filename.
Affected configurations
Node
symantecendpoint_protection_managerMatch12.1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| symantec | endpoint_protection_manager | 12.1.0 | cpe:2.3:a:symantec:endpoint_protection_manager:12.1.0:*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2015-08-01 01:59:00
nvd
nvd
CVE-2015-1487
2015-08-01 01:59:04
cvelist
cvelist
CVE-2015-1487
2015-08-01 01:00:00
checkpoint_advisories
checkpoint_advisories
zdt
zdt
Symantec Endpoint Protection Manager Authentication Bypass / Code Execution Exploit
2015-08-17 00:00:00
Symantec Endpoint Protection Multiple Vulnerabilities
2015-08-01 00:00:00
packetstorm
packetstorm
Symantec Endpoint Protection Manager Authentication Bypass / Code Execution
2015-08-17 00:00:00
exploitdb
exploitdb
metasploit
metasploit
nessus
nessus
openvas
openvas
Symantec Endpoint Protection Manager Multiple Vulnerabilities (Aug 2015)
2015-08-14 00:00:00
symantec
symantec
Symantec Endpoint Protection Multiple Issues
2015-07-30 08:00:00
CVSS2
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0.725
Percentile
98.1%
Related for CVE-2015-1487