Vulnerability in Symantec Endpoint_protection

CVE-2013-5010

The Application/Device Control (ADC) component in the client in Symantec Endpoint Protection (SEP) 11.x before 11.0.7.4 and 12.x before 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x before 12.1.2 RU2 does not properly hand…

EPSS: 0.001 (22.1th percentile) — read the EPSS interpretation.

Affected products

Symantec Endpoint_protection — versions 11.0, 11.0.1, 11.0.2
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

64129 (vdb-entry, x_refsource_BID)
secure@symantec.com (x_refsource_CONFIRM, Vendor Advisory)
symantec-endpoint-cve20135010-sec-bypass(90225) (vdb-entry, x_refsource_XF)