CVE-2016-3649

CVE-2016-3649

EPSS 1.7%

Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated administrators to enumerate administrator accounts via modified GET requests.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160628_01 http://www.securityfocus.com/bid/91440 http://www.securitytracker.com/id/1036196