CVE-2012-0293
Symantec Altiris WISE Package Studio <8.0MR1 - SQL Injection
Title source: llmDescription
Multiple SQL injection vulnerabilities in Symantec Altiris WISE Package Studio before 8.0MR1 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/80201
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/52392
Vendor Advisory x_refsource_confirm
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120314_00
Scores
EPSS
0.0118
EPSS Percentile
79.0%
Details
CWE
CWE-89
Status
published
Products (3)
symantec/altiris_wise_package_studio
7 sp2
symantec/altiris_wise_package_studio
7.0 (4 CPE variants)
symantec/altiris_wise_package_studio
< 8.0
Published
Mar 17, 2012
Tracked Since
Feb 18, 2026