This script is Copyright (C) 2016 Tenable Network Security, Inc.
The version of Symantec Endpoint Protection Client installed on the
remote host is affected by a remote code execution vulnerability.
The version of Symantec Endpoint Protection Client running on the
remote host is 12.1 prior to 12.1 RU6 MP4. It is, therefore, affected
by a remote code execution vulnerability due to insecure permissions
for the SysPlant.sys driver. A remote attacker can exploit this, via a
crafted HTML document, to execute arbitrary code.
See also :
Upgrade to Symantec Endpoint Protection Client version 12.1 RU6 MP4 or
later. Alternatively, apply the workaround as described in the vendor
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 6.9
Public Exploit Available : false