fw_charts.php in the reporting module in the Manager (aka SEPM) component in Symantec Endpoint Protection (SEP) 11.x prior to 11 RU6 MP2 allows remote malicious users to bypass intended restrictions on report generation, overwrite arbitrary PHP scripts, and execute arbitrary code via a crafted request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec endpoint protection 11.0 |
||
symantec endpoint protection 11.0.1 |
||
symantec endpoint protection 11.0.4 |
||
symantec endpoint protection 11.0.2 |
||
symantec endpoint protection 11.0.3001 |