Test ID:	1.3.6.1.4.1.25623.1.0.803095
Category:	Privilege escalation
Title:	Symantec Enterprise Security Manager/Agent Privilege Escalation Vulnerability
Summary:	Symantec Enterprise Security Manager/Agent is prone to a local privilege escalation vulnerability.
Description:	Summary: Symantec Enterprise Security Manager/Agent is prone to a local privilege escalation vulnerability. Vulnerability Insight: An unquoted Windows search path flaw exists in ESM Manager and Agents. Vulnerability Impact: Successful exploitation could allow local users to gain privileges via unspecified vectors. Affected Software/OS: Symantec Enterprise Security Manager versions 10.x and prior Symantec Enterprise Security Manager Agents versions 10.x and prior Solution: Upgrade to Symantec Enterprise Security Manager version 11.0 or later, or apply the patch SU44. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-4350 BugTraq ID: 56915 http://www.securityfocus.com/bid/56915 http://www.securitytracker.com/id?1027874
Copyright	Copyright (C) 2013 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.