Symantec Endpoint Protection CVE-2012-0294 Directory Traversal Vulnerability

Bugtraq ID:	53182
Class:	Input Validation Error
CVE:	CVE-2012-0294
Remote:	Yes
Local:	No
Published:	May 22 2012 12:00AM
Updated:	May 22 2012 12:00AM
Credit:	Andrea Micalizzi aka rgod, working through TippingPoint�??s ZeroDay Initiative.
Vulnerable:	Symantec Endpoint Protection 12.1
Not Vulnerable:	Symantec Endpoint Protection 12.1 RU1-MP1

Symantec Endpoint Protection CVE-2012-0294 Directory Traversal Vulnerability

Symantec Endpoint Protection is prone to a directory-traversal vulnerability that affects the 'Management Console' because it fails to sufficiently sanitize user-supplied input.

Exploiting this issue allows an attacker to delete arbitrary files through directory-traversal sequences, which may lead to a denial-of-service condition. Other attacks are also possible.

Symantec Endpoint Protection 12.1 is vulnerable.

Symantec Endpoint Protection CVE-2012-0294 Directory Traversal Vulnerability

An attacker can use readily available tools to exploit this issue.

Symantec Endpoint Protection CVE-2012-0294 Directory Traversal Vulnerability

Solution:
Updates are available. Please see the references for more information.

Symantec Endpoint Protection CVE-2012-0294 Directory Traversal Vulnerability

References:

• Endpoint Protection Homepage (Symantec)
  
• SYM12-008: Security Advisories Relating to Symantec Products - Symantec Endpoint (Symantec)