vulnerability

Symantec Endpoint Protection: CVE-2017-6331: Tamper-Protection Bypass

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:L/AC:L/Au:N/C:N/I:P/A:P)	Nov 6, 2017	Apr 27, 2018	May 4, 2018

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:P/A:P)

Published

Nov 6, 2017

Added

Apr 27, 2018

Modified

May 4, 2018

Description

The Symantec Endpoint Protection Windows endpoint can encounter an issue of Tamper-Protection Bypass, which is a type of attack that bypasses the real time protection for the application that is run on servers and clients. Tamper Protection protects Symantec processes and internal objects from these attacks that non-Symantec processes such as worms, Trojan horses, viruses, and security risks could make. Note that in this circumstance, the tamper-protection bypass only allows altering a small amount of text in one element of the UI.

Solution

endpoint_protection-upgrade-latest

References

CVE-2017-6331
https://attackerkb.com/topics/CVE-2017-6331
URL-https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20171106_00

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today