Oval Definition:	oval:org.cisecurity:def:1299
Revision Date: 2016-11-25 Version: 7 Title: The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP1 allows remote authenticated users to write to arbitrary files – CVE-2015-1487 Description: The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP1 allows remote authenticated users to write to arbitrary files, and consequently obtain administrator privileges, via a crafted filename. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2015-1487 Platform(s): Microsoft Windows 10 Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Product(s): Symantec Endpoint Protection Definition Synopsis Symantec Endpoint Protection Manager is installed + version Symantec Endpoint Protection Manager is installed AND Check if Symantec Endpoint Protection Manager version is less than 12.1.6306.6100 OR Symantec Endpoint Protection Client is installed + version Symantec Endpoint Protection 12.1 Client is installed AND Check if Symantec Endpoint Protection Client version is less than 12.1.6306.6100
BACK