M4 Macro Library in Symantec Security Information Manager prior to 4.0.2.29 HOTFIX 1 allows local users to execute arbitrary commands via crafted "rule definitions", which produces dangerous Java code during M4 transformation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec security information manager 4.0.2.12 |
||
symantec security information manager 4.0.2.13 |
||
symantec security information manager 4.0.2.2 |
||
symantec security information manager 4.0.2.20 |
||
symantec security information manager 4.0.2.28 |
||
symantec security information manager 4.0.2.29 |
||
symantec security information manager 4.0.2.9 |
||
symantec security information manager 4.0.2.10 |
||
symantec security information manager 4.0.2.11 |
||
symantec security information manager 4.0.2.18 |
||
symantec security information manager 4.0.2.19 |
||
symantec security information manager 4.0.2.26 |
||
symantec security information manager 4.0.2.27 |
||
symantec security information manager 4.0.2.7 |
||
symantec security information manager 4.0.2.8 |
||
symantec security information manager 4.0.2.14 |
||
symantec security information manager 4.0.2.15 |
||
symantec security information manager 4.0.2.21 |
||
symantec security information manager 4.0.2.22 |
||
symantec security information manager 4.0.2.23 |
||
symantec security information manager 4.0.2.3 |
||
symantec security information manager 4.0.2.4 |
||
symantec security information manager 4.0.2 |
||
symantec security information manager 4.0.2.1 |
||
symantec security information manager 4.0.2.16 |
||
symantec security information manager 4.0.2.17 |
||
symantec security information manager 4.0.2.24 |
||
symantec security information manager 4.0.2.25 |
||
symantec security information manager 4.0.2.5 |
||
symantec security information manager 4.0.2.6 |