Test ID:	1.3.6.1.4.1.25623.1.0.804199
Category:	General
Title:	Symantec Endpoint Protection Multiple Vulnerabilities (Jan 2014)
Summary:	Symantec Endpoint Protection is prone to multiple vulnerabilities.
Description:	Summary: Symantec Endpoint Protection is prone to multiple vulnerabilities. Vulnerability Insight: The flaw exists due to: - application not properly verifying the authentication of authorised users. - an unspecified error in Application/Device Control (ADC) component. - an unquoted search path. Vulnerability Impact: Successful exploitation may allow an attacker to gain escalated privileges and access sensitive files or directories. Affected Software/OS: Symantec Endpoint Protection (SEP) 11.x before version 11.0.7.4 and 12.x before 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x before 12.1.2 RU2 Solution: Upgrade to Symantec Endpoint Protection (SEP) version 11.0.7.4 or 12.1.2 RU2 or Endpoint Protection Small Business Edition 12.x before version 12.1.2RU2. CVSS Score: 7.4 CVSS Vector: AV:A/AC:M/Au:S/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-5009 BugTraq ID: 64128 http://www.securityfocus.com/bid/64128 XForce ISS Database: symantec-endpoint-cve20135009-priv-esc(90224) https://exchange.xforce.ibmcloud.com/vulnerabilities/90224 Common Vulnerability Exposure (CVE) ID: CVE-2013-5010 BugTraq ID: 64129 http://www.securityfocus.com/bid/64129 XForce ISS Database: symantec-endpoint-cve20135010-sec-bypass(90225) https://exchange.xforce.ibmcloud.com/vulnerabilities/90225 Common Vulnerability Exposure (CVE) ID: CVE-2013-5011 BugTraq ID: 64130 http://www.securityfocus.com/bid/64130 XForce ISS Database: symantec-endpoint-cve20135011-priv-esc(90226) https://exchange.xforce.ibmcloud.com/vulnerabilities/90226
Copyright	Copyright (C) 2014 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.