This host is installed with Symantec Endpoint Protection is prone to multiple vulnerabilities.

Successful exploitation may allow an attacker to gain escalated privileges and access sensitive files or directories. Impact Level: System/Application.

Upgrade to Symantec Endpoint Protection (SEP) version 11.0.7.4 or 12.1.2 RU2 or Endpoint Protection Small Business Edition 12.x before version 12.1.2RU2. For Updates refer http://www.symantec.com/en/in/endpoint-protection. ***** NOTE: Ignore this warning if above mentioned patch is installed. *****

The flaw exist due to, - application not properly verifying the authentication of authorised users. - an unspecified error in Application/Device Control (ADC) component. - an unquoted search path.

Symantec Endpoint Protection (SEP) 11.x before version 11.0.7.4 and 12.x before 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x before 12.1.2 RU2

Get the installed version of Symantec Endpoint Protection and check the version is vulnerable or not.

• http://secunia.com/advisories/56354/
• http://www.osvdb.com/101912
• http://www.symantec.com/connect/articles/what-are-symantec-endpoint-protection-sep-versions-released-officialy

---

Updated on 2017-03-28