This script is Copyright (C) 2013-2016 Tenable Network Security, Inc.
The endpoint management application installed on the remote Windows
host is affected by a code execution vulnerability.
The version of Symantec Endpoint Protection Manager installed on the
remote host is a version prior to 12.1 RU3. It is, therefore,
potentially affected by a buffer overflow vulnerability in the
'secars.dll' component. By exploiting this flaw, a remote,
unauthenticated attacker could execute arbitrary code on the remote
host subject to the privileges of the user running the affected
See also :
Upgrade to Symantec Endpoint Protection 12.1 RU3 or later.
Risk factor :
High / CVSS Base Score : 8.3
CVSS Temporal Score : 6.5
Public Exploit Available : true