| Vulnerability Name: | CVE-2013-1612 (CCN-85083) | ||||||||
| Assigned: | 2013-06-18 | ||||||||
| Published: | 2013-06-18 | ||||||||
| Updated: | 2013-06-20 | ||||||||
| Summary: | Buffer overflow in secars.dll in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1.x before 12.1.3, and Symantec Endpoint Protection Center (SPC) Small Business Edition 12.0.x, allows remote attackers to execute arbitrary code via unspecified vectors. | ||||||||
| CVSS v3 Severity: | 9.6 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 7.9 High (CVSS v2 Vector: AV:A/AC:M/Au:N/C:C/I:C/A:C) 6.2 Medium (Temporal CVSS v2 Vector: AV:A/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C)
6.2 Medium (CCN Temporal CVSS v2 Vector: AV:A/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-119 | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2013-1612 Source: CCN Type: SA53864 Symantec Endpoint Protection Manager Buffer Overflow Vulnerability Source: BID Type: UNKNOWN 60542 Source: CCN Type: BID-60542 Symantec Endpoint Protection Manager CVE-2013-1612 Remote Buffer Overflow Vulnerability Source: CCN Type: SYM13-005 Symantec Endpoint Protection Manager 12.1.x Buffer Overflow Source: CONFIRM Type: UNKNOWN http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&suid=20130618_00 Source: XF Type: UNKNOWN symantec-endpoint-cve20131612-bo(85083) Source: EXPLOIT-DB Type: EXPLOIT Offensive Exploit Database [04-27-2014] | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||