CVE-2013-1612

{"id": "CVE-2013-1612", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.9, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 5.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-06-20T03:17:30.640", "references": [{"url": "http://www.securityfocus.com/bid/60542", "source": "secure@symantec.com"}, {"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&suid=20130618_00", "source": "secure@symantec.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in secars.dll in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1.x before 12.1.3, and Symantec Endpoint Protection Center (SPC) Small Business Edition 12.0.x, allows remote attackers to execute arbitrary code via unspecified vectors."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en secars.dll en la consola de gesti\u00f3n en Symantec Endpoint Protection Manager (SEPM) v12.1.x y Symantec Endpoint Protection Center (SPC) Small Business Edition v12.0.x, lo que permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de vectores no especificados."}], "lastModified": "2013-06-20T04:00:00.000", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:symantec:endpoint_protection_manager:12.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "590E3332-512F-44D9-A67C-6F87F6C09D17"}, {"criteria": "cpe:2.3:a:symantec:endpoint_protection_manager:12.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AAC3C870-55F7-410C-9CF6-5DEAC742EA34"}, {"criteria": "cpe:2.3:a:symantec:endpoint_protection_manager:12.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1F71A7F-B7BE-4CA8-B802-5151681BF59A"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:symantec:endpoint_protection_center:12.0.0:-:small_business:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "235C6CFB-7569-4E0F-AC71-1764EF4B5BD5"}, {"criteria": "cpe:2.3:a:symantec:endpoint_protection_center:12.0.1:-:small_business:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E60666D-3CCA-4524-8EE0-7F5F42DD19A5"}], "operator": "OR"}]}], "sourceIdentifier": "secure@symantec.com"}