Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-5010

Опубликовано: 10 янв. 2014
Источник: nvd
CVSS2: 4.6
EPSS Низкий

Описание

The Application/Device Control (ADC) component in the client in Symantec Endpoint Protection (SEP) 11.x before 11.0.7.4 and 12.x before 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x before 12.1.2 RU2 does not properly handle custom polices, which allows local users to bypass intended policy restrictions and access files or directories via unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:symantec:endpoint_protection:*:*:*:*:*:*:*:*
Версия до 11.0.7.3 (включая)
cpe:2.3:a:symantec:endpoint_protection:11.0:*:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0:ru5:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0:ru6:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0:ru6a:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0:ru6mp1:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0:ru6mp2:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.1:*:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.1:mp1:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.1:mp2:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.2:*:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.2:mp1:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.2:mp2:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.4:*:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.4:mp1a:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.4:mp2:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.3001:*:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.6000:*:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.6100:*:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.6200:*:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.6200.754:*:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.6300:*:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.7000:*:*:*:*:*:*:*
cpe:2.3:a:symantec:endpoint_protection:11.0.7100:*:*:*:*:*:*:*

EPSS

Процентиль: 22%
0.00072
Низкий

4.6 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

github логотип

GHSA-q2w9-m8p6-296j

github
больше 3 лет назад

The Application/Device Control (ADC) component in the client in Symantec Endpoint Protection (SEP) 11.x before 11.0.7.4 and 12.x before 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x before 12.1.2 RU2 does not properly handle custom polices, which allows local users to bypass intended policy restrictions and access files or directories via unspecified vectors.

EPSS

Процентиль: 22%
0.00072
Низкий

4.6 Medium

CVSS2

Дефекты

CWE-264