CVE-2012-4348

Symantec Endpoint Protection 11.0 < RU7-MP3 and 12.1 < RU2 - Authenticated Remote Code Execution via PHP Script Input

Title source: llm

Description

The management console in Symantec Endpoint Protection (SEP) 11.0 before RU7-MP3 and 12.1 before RU2, and Symantec Endpoint Protection Small Business Edition 12.x before 12.1 RU2, does not properly validate input for PHP scripts, which allows remote authenticated users to execute arbitrary code via unspecified vectors.

References (3)

Core 3

Core References

Third Party Advisory x_refsource_confirm

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20121210_00

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/56846

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1027863

Scores

EPSS 0.0247

EPSS Percentile 85.5%

Details

CWE

CWE-20

Status published

Products (16)

symantec/endpoint_protection 11.0 (6 CPE variants)

symantec/endpoint_protection 11.0.1 (3 CPE variants)

symantec/endpoint_protection 11.0.2 (3 CPE variants)

symantec/endpoint_protection 11.0.4 (3 CPE variants)

symantec/endpoint_protection 11.0.3001

symantec/endpoint_protection 11.0.6000

symantec/endpoint_protection 11.0.6100

symantec/endpoint_protection 11.0.6200

symantec/endpoint_protection 11.0.6200.754

symantec/endpoint_protection 11.0.6300

... and 6 more

Published Dec 18, 2012

Tracked Since Feb 18, 2026