CVE-2012-4350

Published: Dec 18, 2012Modified: Apr 29, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

Multiple unquoted Windows search path vulnerabilities in the (1) Manager and (2) Agent components in Symantec Enterprise Security Manager (ESM) before 11.0 allow local users to gain privileges via unspecified vectors.

Affected (9)

Products: Symantec: Enterprise Security Manager

Symantec

1 product

Enterprise Security Manager

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Symantec Enterprise Security Manager	Up to 10.0
Symantec Enterprise Security Manager	Version 6.0
Symantec Enterprise Security Manager	Version 6.5.0
Symantec Enterprise Security Manager	Version 6.5.1
Symantec Enterprise Security Manager	Version 6.5.2
Symantec Enterprise Security Manager	Version 6.5.3
Symantec Enterprise Security Manager	Version 6.5
Symantec Enterprise Security Manager	Version 9.0.1
Symantec Enterprise Security Manager	Version 9.0

References (6)

http://www.securityfocus.com/bid/56915

Source: cve@mitre.org

http://www.securitytracker.com/id?1027874

Source: cve@mitre.org

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20121213_00

Source: cve@mitre.org

http://www.securityfocus.com/bid/56915

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1027874

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20121213_00

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.