PT-2010-1931 · Symantec · Symantec Endpoint Protection+1

Andrea Micalizzi

Published

2010-12-15

Updated

2018-10-30

CVE-2010-0114

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Symantec Endpoint Protection versions 11.x through 11 RU6 MP1

Description The issue allows remote attackers to bypass intended restrictions on report generation, overwrite arbitrary PHP scripts, and execute arbitrary code via a crafted request. This is related to the fw charts.php file in the reporting module of the Manager component.

Recommendations For Symantec Endpoint Protection versions 11.x through 11 RU6 MP1, update to version 11 RU6 MP2 or later to resolve the issue. As a temporary workaround, consider restricting access to the fw charts.php file in the reporting module to minimize the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2010-0114

ZDI-10-291

Affected Products

Symantec Endpoint Protection

Symantec Endpoint Protection Client

PT-2010-1931 · Symantec · Symantec Endpoint Protection+1

CVE-2010-0114

Weakness Enumeration

Related Identifiers

Affected Products

References · 11