Vulnerability Details : CVE-2012-1821
The Network Threat Protection module in the Manager component in Symantec Endpoint Protection (SEP) 11.0.600x through 11.0.700x on Windows Server 2003 allows remote attackers to cause a denial of service (web-server outage, or daemon crash or hang) via a flood of packets that triggers automated blocking of network traffic.
Vulnerability category: Denial of service
Products affected by CVE-2012-1821
- cpe:2.3:a:symantec:endpoint_protection:11.0.6200.754:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2003 Server
- cpe:2.3:a:symantec:endpoint_protection:11.0.6000:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2003 Server
- cpe:2.3:a:symantec:endpoint_protection:11.0.6100:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2003 Server
- cpe:2.3:a:symantec:endpoint_protection:11.0.6300:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2003 Server
- cpe:2.3:a:symantec:endpoint_protection:11.0.6200:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2003 Server
- cpe:2.3:a:symantec:endpoint_protection:11.0.7000:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2003 Server
- cpe:2.3:a:symantec:endpoint_protection:11.0.7100:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2003 Server
Exploit prediction scoring system (EPSS) score for CVE-2012-1821
1.27%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 85 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2012-1821
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
References for CVE-2012-1821
-
http://www.securityfocus.com/bid/50358
Symantec Endpoint Protection Manager Remote Denial of Service Vulnerability
-
http://www.securitytracker.com/id?1027092
Symantec Endpoint Protection Bug Lets Remote Authenticated Users Deny Service - SecurityTracker
-
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120522_00
Symantec Endpoint Protection Manager 11.x Denial of ServiceVendor Advisory
-
http://www.kb.cert.org/vuls/id/149070
VU#149070 - Symantec Endpoint Protection network threat protection module Microsoft IIS denial of service vulnerability
Jump to