CVE-2012-4350
First published: Tue Dec 18 2012(Updated: )
Multiple unquoted Windows search path vulnerabilities in the (1) Manager and (2) Agent components in Symantec Enterprise Security Manager (ESM) before 11.0 allow local users to gain privileges via unspecified vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Symantec Enterprise Security Manager | <=10.0 | |
| Symantec Enterprise Security Manager | =6.0 | |
| Symantec Enterprise Security Manager | =6.5 | |
| Symantec Enterprise Security Manager | =6.5.0 | |
| Symantec Enterprise Security Manager | =6.5.1 | |
| Symantec Enterprise Security Manager | =6.5.2 | |
| Symantec Enterprise Security Manager | =6.5.3 | |
| Symantec Enterprise Security Manager | =9.0 | |
| Symantec Enterprise Security Manager | =9.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2012-4350?
CVE-2012-4350 is classified as a privilege escalation vulnerability affecting Symantec Enterprise Security Manager.
How do I fix CVE-2012-4350?
To fix CVE-2012-4350, update Symantec Enterprise Security Manager to version 11.0 or later.
What components are affected by CVE-2012-4350?
CVE-2012-4350 affects the Manager and Agent components of Symantec Enterprise Security Manager.
Who can exploit CVE-2012-4350?
CVE-2012-4350 can be exploited by local users to gain elevated privileges.
Which versions of Symantec Enterprise Security Manager are vulnerable to CVE-2012-4350?
Versions 10.0 and earlier of Symantec Enterprise Security Manager, as well as specific 6.0 and up to 9.0.1 versions, are vulnerable to CVE-2012-4350.
- agent/author
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- collector/nvd-index
- vendor/symantec
- canonical/symantec enterprise security manager
- version/symantec enterprise security manager/10.0
- version/symantec enterprise security manager/6.0
- version/symantec enterprise security manager/6.5
- version/symantec enterprise security manager/6.5.0
- version/symantec enterprise security manager/6.5.1
- version/symantec enterprise security manager/6.5.2
- version/symantec enterprise security manager/6.5.3
- version/symantec enterprise security manager/9.0
- version/symantec enterprise security manager/9.0.1