CVE-2012-1821

Published May 24, 2012

Last updated 7 years ago

CVSS info 5.0

Overview

Description: The Network Threat Protection module in the Manager component in Symantec Endpoint Protection (SEP) 11.0.600x through 11.0.700x on Windows Server 2003 allows remote attackers to cause a denial of service (web-server outage, or daemon crash or hang) via a flood of packets that triggers automated blocking of network traffic.
Source: cret@cert.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.6000:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74A97619-5D8B-4634-BFA6-F73285865823"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.6100:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1CF5F84C-91C1-4395-B988-9F9E4F87D8B9"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.6200:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0C0EFA7-71FE-48C9-97D3-F414F49DB495"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.6200.754:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "142BCA40-386C-4498-BECB-22BC07B240DD"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.6300:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD725528-A19A-465E-B427-EF426104B7AF"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.7000:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BFD42022-0168-4C9D-8EED-0E16322E8796"
          },
          {
            "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0.7100:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9FE29507-7B24-44AD-8C15-C1063E34D7D9"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "60EC86B8-5C8C-4873-B364-FB1F8EFE1CFF"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp1:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "FE8F4276-4D97-480D-A542-FE9982FFD765"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2978BF86-5A1A-438E-B81F-F360D0E30C9C"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References