CVE-2013-5015

Related Files

Symantec Endpoint Protection Manager Remote Command Execution

Posted Feb 26, 2014

Authored by Chris Graham, Stefan Viehboeck | Site metasploit.com

This Metasploit module exploits XXE and SQL injection flaws in Symantec Endpoint Protection Manager versions 11.0, 12.0 and 12.1. When supplying a specially crafted XXE request an attacker can reach SQL injection affected components. As xp_cmdshell is enabled in the included database instance, it's possible to execute arbitrary system commands on the remote system with SYSTEM privileges.

tags | exploit, remote, arbitrary, sql injection, xxe

advisories | CVE-2013-5014, CVE-2013-5015

SHA-256 | ef19d7abd0e99695337b2df4433d4785cfa21593bd61b704d3aa78a9d8ce5183

Download | Favorite | View

Symantec Endpoint Protection Manager Remote Command Execution

Posted Feb 23, 2014

Authored by Chris Graham

Symantec Endpoint Protection Manager suffers from a remote command execution vulnerability. Versions 11.0, 12.0, and 12.1 are affected.

tags | exploit, remote

advisories | CVE-2013-5014, CVE-2013-5015

SHA-256 | 1230fa397327e1f414c650a845b08b3ed515236c94fa13a2c1c80e976a099209

Download | Favorite | View

Symantec Endpoint Protection 11.0 / 12.0 / 12.1 XXE / SQL Injection

Posted Feb 19, 2014

Authored by S. Viehbock | Site sec-consult.com

Symantec Endpoint Protection versions 11.0, 12.0, and 12.1 suffer from unauthenticated XML external entity injection and unauthenticated local SQL injection vulnerabilities.

tags | advisory, local, vulnerability, sql injection, xxe

advisories | CVE-2013-5014, CVE-2013-5015

SHA-256 | 8dc0a7d04b4648d74f8859b867b10ed25093390acfa65b509cef76bb983b8a1a

Download | Favorite | View