Symantec Endpoint Encryption 11.x < 11.1.1 Unquoted Search Path Local Privilege Escalation (SYM16-006)
High Nessus Plugin ID 91124
SynopsisA drive encryption management agent installed on the remote Windows host is affected by a local privilege escalation vulnerability.
DescriptionThe version of the Symantec Endpoint Encryption (SEE) Drive Encryption Client installed on the remote Windows host is 11.x prior to 11.1.1.
It is, therefore, affected by a privilege escalation vulnerability due to an unquoted search path in EEDService. A local attacker can exploit this to escalate privileges.
SolutionUpgrade to Symantec Endpoint Encryption version 11.1.1 or later.