Unrated severityNVD Advisory· Published Jun 22, 2012· Updated Jun 16, 2026
CVE-2012-0304
CVE-2012-0304
Description
Symantec LiveUpdate Administrator before 2.3.1 uses weak permissions (Everyone: Full Control) for the installation directory, which allows local users to gain privileges via a Trojan horse file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11cpe:2.3:a:symantec:liveupdate_administrator:*:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:a:symantec:liveupdate_administrator:*:*:*:*:*:*:*:*range: <=2.3.0
- cpe:2.3:a:symantec:liveupdate_administrator:1.5.3.21:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:liveupdate_administrator:1.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:liveupdate_administrator:1.5.7.19:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:liveupdate_administrator:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:liveupdate_administrator:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:liveupdate_administrator:2.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:liveupdate_administrator:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:liveupdate_administrator:2.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:liveupdate_administrator:2.2.2.9:*:*:*:*:*:*:*
- (no CPE)range: <2.3.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.