Symantec: >> Enterprise Security Manager >> 6.5.1 Security Vulnerabilities
Multiple unquoted Windows search path vulnerabilities in the (1) Manager and (2) Agent components in Symantec Enterprise Security Manager (ESM) before 11.0 allow local users to gain privileges via unspecified vectors.
CVSS Score
7.2
EPSS Score
0.001
Published
2012-12-18
The agent remote upgrade interface in Symantec Enterprise Security Manager (ESM) before 20070405 does not verify the authenticity of upgrades, which allows remote attackers to execute arbitrary code via software that implements the agent upgrade protocol.
CVSS Score
10.0
EPSS Score
0.065
Published
2007-04-30
The manager server in Symantec Enterprise Security Manager (ESM) 6 and 6.5.x allows remote attackers to cause a denial of service (hang) via a malformed ESM agent request.
CVSS Score
5.0
EPSS Score
0.016
Published
2006-08-23