PT-2019-8879 · Symantec · Sep
Publicado
2019-04-25
·
Atualizado
2020-08-24
·
CVE-2018-12244
CVSS v2.0
6.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
SEP (Mac client) versions prior to and including 12.1 RU6 MP9
SEP (Mac client) versions prior to 14.2 RU1
Description
The issue is related to a CSV/DDE injection, also known as formula injection, which occurs when an application allows untrusted input into CSV files.
Recommendations
For SEP (Mac client) versions prior to and including 12.1 RU6 MP9, update to a version later than 12.1 RU6 MP9.
For SEP (Mac client) versions prior to 14.2 RU1, update to version 14.2 RU1 or later.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Sep