Vulnerability Details CVE-2013-1609
Multiple unquoted Windows search path vulnerabilities in the (1) File Collector and (2) File PlaceHolder services in Symantec Enterprise Vault (EV) for File System Archiving before 9.0.4 and 10.x before 10.0.1 allow local users to gain privileges via a Trojan horse program.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.8%
CVSS Severity
CVSS v2 Score 6.8
References
- http://www.securityfocus.com/bid/58617
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20130321_00
- http://www.securityfocus.com/bid/58617
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20130321_00
Products affected by CVE-2013-1609
-
cpe:2.3:a:symantec:enterprise_vault_for_file_system_archiving:*
-
cpe:2.3:a:symantec:enterprise_vault_for_file_system_archiving:10.0.0