Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-6277
HistoryFeb 21, 2020 - 5:15 p.m.

CVE-2012-6277

2020-02-2117:15:10
[email protected]
web.nvd.nist.gov
4

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.1

Confidence

High

EPSS

0.004

Percentile

72.7%

JSON

Multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 10.16, as used in Symantec Mail Security for Microsoft Exchange before 6.5.8, Symantec Mail Security for Domino before 8.1.1, Symantec Messaging Gateway before 10.0.1, Symantec Data Loss Prevention (DLP) before 11.6.1, IBM Notes 8.5.x, IBM Lotus Domino 8.5.x before 8.5.3 FP4, and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, related to “a number of underlying issues” in which “some of these cases demonstrated memory corruption with attacker-controlled input and could be exploited to run arbitrary code.”

Affected configurations

Nvd
Node
ibmdominoRange8.5.08.5.3.6
OR
ibmnotesRange8.58.5.3
Node
symantecdata_loss_prevention_endpointRange11.011.6.1
OR
symantecdata_loss_prevention_enforce\/detection_serversRange11.011.6.1linux
OR
symantecdata_loss_prevention_enforce\/detection_serversRange11.011.6.1windows
OR
symantecmail_securityRange6.5.7microsoft_exchange
OR
symantecmail_securityRange8.1.0domino
OR
symantecmail_securityMatch6.5.7
OR
symantecmessaging_gatewayRange9.510.0.1
Node
hpautonomy_keyview_idolRange<10.16
VendorProductVersionCPE
ibmdomino*cpe:2.3:a:ibm:domino:*:*:*:*:*:*:*:*
ibmnotes*cpe:2.3:a:ibm:notes:*:*:*:*:*:*:*:*
symantecdata_loss_prevention_endpoint*cpe:2.3:a:symantec:data_loss_prevention_endpoint:*:*:*:*:*:*:*:*
symantecdata_loss_prevention_enforce\/detection_servers*cpe:2.3:a:symantec:data_loss_prevention_enforce\/detection_servers:*:*:*:*:*:linux:*:*
symantecdata_loss_prevention_enforce\/detection_servers*cpe:2.3:a:symantec:data_loss_prevention_enforce\/detection_servers:*:*:*:*:*:windows:*:*
symantecmail_security*cpe:2.3:a:symantec:mail_security:*:*:*:*:*:microsoft_exchange:*:*
symantecmail_security*cpe:2.3:a:symantec:mail_security:*:*:*:*:*:domino:*:*
symantecmail_security6.5.7cpe:2.3:a:symantec:mail_security:6.5.7:*:*:*:*:*:*:*
symantecmessaging_gateway*cpe:2.3:a:symantec:messaging_gateway:*:*:*:*:*:*:*:*
hpautonomy_keyview_idol*cpe:2.3:a:hp:autonomy_keyview_idol:*:*:*:*:*:*:*:*

Related

cert 1
prion 1
cve 1
cvelist 1
nessus 1
cert
cert
Autonomy Keyview IDOL contains multiple vulnerabilities in file parsers
2012-11-20 00:00:00
prion
prion
Memory corruption
2020-02-21 17:15:00
cve
cve
CVE-2012-6277
2020-02-21 17:15:10
cvelist
cvelist
CVE-2012-6277
2020-02-21 16:50:17
nessus
nessus
IBM Lotus Domino 8.5.x < 8.5.3 FP 4 Multiple Vulnerabilities
2013-07-05 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.1

Confidence

High

EPSS

0.004

Percentile

72.7%

JSON
Related for NVD:CVE-2012-6277
cert1prion1cve1cvelist1nessus1