vulnerability
Symantec Endpoint Protection: Symantec Endpoint Protection Clients Local Elevation of Privilege (CVE-2016-9094)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Apr 16, 2018 | Nov 19, 2019 | Nov 27, 2024 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Apr 16, 2018
Added
Nov 19, 2019
Modified
Nov 27, 2024
Description
Symantec Endpoint Protection clients place detected malware in quarantine as part of the intended product functionality. The quarantine logs can be exported for review by the user in a variety of formats including .CSV files. Prior to 14.0 MP1 and 12.1 RU6 MP7, the potential exists for file metadata to be interpreted and evaluated as a formula. Successful exploitation of an attack of this type requires considerable direct user-interaction from the user exporting and then opening the log files on the intended target client.
Solutions
symantec-endpoint-protection-upgrade-12_1_7166_6700symantec-endpoint-protection-upgrade-14_0_2332_0100
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.