The Network Threat Protection module in the Manager component in Symantec Endpoint Protection (SEP) 11.0.600x through 11.0.700x on Windows Server 2003 allows remote attackers to cause a denial of service (web-server outage, or daemon crash or hang) via a flood of packets that triggers automated blocking of network traffic.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Endpoint_protection | Symantec | 11.0.6000 (including) | 11.0.6000 (including) |
| Endpoint_protection | Symantec | 11.0.6100 (including) | 11.0.6100 (including) |
| Endpoint_protection | Symantec | 11.0.6200 (including) | 11.0.6200 (including) |
| Endpoint_protection | Symantec | 11.0.6200.754 (including) | 11.0.6200.754 (including) |
| Endpoint_protection | Symantec | 11.0.6300 (including) | 11.0.6300 (including) |
| Endpoint_protection | Symantec | 11.0.7000 (including) | 11.0.7000 (including) |
| Endpoint_protection | Symantec | 11.0.7100 (including) | 11.0.7100 (including) |
References
- http://osvdb.org/82147
- http://secunia.com/advisories/49221
- http://www.kb.cert.org/vuls/id/149070
- http://www.securityfocus.com/bid/50358
- http://www.securitytracker.com/id?1027092
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2012\u0026suid=20120522_00
- http://osvdb.org/82147
- http://secunia.com/advisories/49221
- http://www.kb.cert.org/vuls/id/149070
- http://www.securityfocus.com/bid/50358
- http://www.securitytracker.com/id?1027092
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2012\u0026suid=20120522_00