CVE-2012-0289

Published May 23, 2012

Last updated 12 years ago

CVSS info 7.2

Overview

Description: Buffer overflow in Symantec Endpoint Protection (SEP) 11.0.600x through 11.0.710x and Symantec Network Access Control (SNAC) 11.0.600x through 11.0.710x allows local users to gain privileges, and modify data or cause a denial of service, via a crafted script.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.6000:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74A97619-5D8B-4634-BFA6-F73285865823"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.6100:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1CF5F84C-91C1-4395-B988-9F9E4F87D8B9"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.6200:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0C0EFA7-71FE-48C9-97D3-F414F49DB495"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.6200.754:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "142BCA40-386C-4498-BECB-22BC07B240DD"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.6300:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD725528-A19A-465E-B427-EF426104B7AF"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.7000:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BFD42022-0168-4C9D-8EED-0E16322E8796"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.7100:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9FE29507-7B24-44AD-8C15-C1063E34D7D9"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:network_access_control:11.0.6000:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FCFCFC06-BB3E-4EC0-99A6-B617988A5570"
          },
          {
            "criteria": "cpe:2.3:a:symantec:network_access_control:11.0.6100:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3930F533-D9CF-41E9-A5F4-551874C780BC"
          },
          {
            "criteria": "cpe:2.3:a:symantec:network_access_control:11.0.6200:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "009B26A2-7096-42B9-910D-3CC296FFF8BB"
          },
          {
            "criteria": "cpe:2.3:a:symantec:network_access_control:11.0.6300:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F364C90E-F794-4A9C-981F-87EF54A2F81A"
          },
          {
            "criteria": "cpe:2.3:a:symantec:network_access_control:11.0.7000:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "639C9956-5510-48C0-97F6-236C1DEB6045"
          },
          {
            "criteria": "cpe:2.3:a:symantec:network_access_control:11.0.7100:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8EDFBF60-F92C-45A7-A142-88C688E1F307"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References