Symantec Enterprise Security Manager/Agent本地权限提升漏洞
Symantec Enterprise Security Manager/Agent本地权限提升漏洞
发布日期:2012-12-13
更新日期:2012-12-15
受影响系统:
Symantec Enterprise Security Manager 9.0.325
Symantec Enterprise Security Manager 6.5.3
Symantec Enterprise Security Manager 6.5.2
Symantec Enterprise Security Manager 6.5.1
Symantec Enterprise Security Manager 6.5
Symantec Enterprise Security Manager 6.0
Symantec Enterprise Security Manager 10.0.274
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 56915
CVE(CAN) ID: CVE-2012-4350
Symantec Enterprise Security Manager(ESM)可以在整个企业范围内为关键性应用程序和服务器自动搜索发现其漏洞隐患和不符合安全策略的设定。
Symantec的Enterprise Security Manager (ESM) for Windows在Manager和Agent组件内存在未引用的搜索路径,如果未授权的本地用户可以在root路径中插入任意代码,则可以提升的权限在系统启动或重启时执行其代码。
<*来源:Gavin Jones
链接:http://www.securitytracker.com/id/1027874
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=secu
*>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Symantec
--------
Symantec已经为此发布了一个安全公告(20121213_00)以及相应补丁:
20121213_00:Security Advisories Relating to Symantec Products - Symantec Enterprise Security Manager Manager/Agent Local Elevation of Privilege
链接:http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=secu
补丁下载:https://www.symantec.com/security_response/securityupdates/list.jsp?fid=esm&pvid=pu
评论暂时关闭