Symantec Endpoint Protection Reporting Module 'fw_charts.php' Remote Code Execution Vulnerability

Bugtraq ID: 45372
Class: Design Error
CVE: CVE-2010-0114
Remote: Yes
Local: No
Published: Dec 15 2010 12:00AM
Updated: Dec 23 2010 07:53AM
Credit: Andrea Micalizzi aka rgod via the Zero Day Initiative
Vulnerable: Symantec Endpoint Protection 11.0.4010 .26 (MR4-MP1a)
Symantec Endpoint Protection 11.0.4010 .19 (MR4-MP1)
Symantec Endpoint Protection 11.0.4000 .2295 (MR4)
Symantec Endpoint Protection 11.0.4000 .2295
Symantec Endpoint Protection 11.0.4000
Symantec Endpoint Protection 11.0.3001 .2224 (MR3)
Symantec Endpoint Protection 11.0.2020 .56 (MR2-MP2)
Symantec Endpoint Protection 11.0.2010 .25 (MR2-MP1)
Symantec Endpoint Protection 11.0.2001 .10 (MR2-PP1)
Symantec Endpoint Protection 11.0.2000 .1567 (MR2)
Symantec Endpoint Protection 11.0.1005 .1428 (MR1-PP5)
Symantec Endpoint Protection 11.0.1002 .1378 (MR1-PP2)
Symantec Endpoint Protection 11.0.1000 .1375 (MR1)
Symantec Endpoint Protection 11.0.781 .1287 (STM-PP1)
Symantec Endpoint Protection 11.0.780 .1109 (STM)
Symantec Endpoint Protection 11.0.4202.75
Symantec Endpoint Protection 11.0 RU5
Symantec Endpoint Protection 11.0 RU4
Symantec Endpoint Protection 11.0 MR3
Symantec Endpoint Protection 11.0 MR2
Symantec Endpoint Protection 11.0 MR1
Symantec Endpoint Protection 11.0
Not Vulnerable: Symantec Endpoint Protection 11.0 RU6 MP2


 

Privacy Statement
Copyright 2010, SecurityFocus