Lucene search
HistoryMay 23, 2012 - 9:55 p.m.
CVE-2012-0289
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
High
EPSS
0.004
Percentile
73.3%
Buffer overflow in Symantec Endpoint Protection (SEP) 11.0.600x through 11.0.710x and Symantec Network Access Control (SNAC) 11.0.600x through 11.0.710x allows local users to gain privileges, and modify data or cause a denial of service, via a crafted script.
Affected configurations
Node
symantecendpoint_protectionMatch11.0.6000
ORsymantecendpoint_protectionMatch11.0.6100
ORsymantecendpoint_protectionMatch11.0.6200
ORsymantecendpoint_protectionMatch11.0.6200.754
ORsymantecendpoint_protectionMatch11.0.6300
ORsymantecendpoint_protectionMatch11.0.7000
ORsymantecendpoint_protectionMatch11.0.7100
Node
symantecnetwork_access_controlMatch11.0.6000
ORsymantecnetwork_access_controlMatch11.0.6100
ORsymantecnetwork_access_controlMatch11.0.6200
ORsymantecnetwork_access_controlMatch11.0.6300
ORsymantecnetwork_access_controlMatch11.0.7000
ORsymantecnetwork_access_controlMatch11.0.7100
| Vendor | Product | Version | CPE |
|---|---|---|---|
| symantec | endpoint_protection | 11.0.6000 | cpe:2.3:a:symantec:endpoint_protection:11.0.6000:*:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.6100 | cpe:2.3:a:symantec:endpoint_protection:11.0.6100:*:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.6200 | cpe:2.3:a:symantec:endpoint_protection:11.0.6200:*:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.6200.754 | cpe:2.3:a:symantec:endpoint_protection:11.0.6200.754:*:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.6300 | cpe:2.3:a:symantec:endpoint_protection:11.0.6300:*:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.7000 | cpe:2.3:a:symantec:endpoint_protection:11.0.7000:*:*:*:*:*:*:* |
| symantec | endpoint_protection | 11.0.7100 | cpe:2.3:a:symantec:endpoint_protection:11.0.7100:*:*:*:*:*:*:* |
| symantec | network_access_control | 11.0.6000 | cpe:2.3:a:symantec:network_access_control:11.0.6000:*:*:*:*:*:*:* |
| symantec | network_access_control | 11.0.6100 | cpe:2.3:a:symantec:network_access_control:11.0.6100:*:*:*:*:*:*:* |
| symantec | network_access_control | 11.0.6200 | cpe:2.3:a:symantec:network_access_control:11.0.6200:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2012-0289
2012-05-23 21:55:01
packetstorm
packetstorm
Symantec End Point Protection / Network Access Control 11.x Code Execution
2012-05-23 00:00:00
prion
prion
Buffer overflow
2012-05-23 21:55:00
zdt
zdt
seebug
seebug
Symantec Endpoint Protectionζ¬ε°ζιζεζΌζ΄
2012-05-23 00:00:00
securityvulns
securityvulns
Symantec Endpoint Protection code execution
2012-08-27 00:00:00
exploitdb
exploitdb
zdi
zdi
exploitpack
exploitpack
cvelist
cvelist
CVE-2012-0289
2012-05-23 21:00:00
nessus
nessus
symantec
symantec
Symantec Endpoint Protection Multiple Issues
2012-05-22 08:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
High
EPSS
0.004
Percentile
73.3%
Related for NVD:CVE-2012-0289