Symantec Endpoint Protection Client < 188.8.131.52 Elevation of Privilege (SYM16-021)
High Nessus Plugin ID 96045
SynopsisA security application installed on the remote host is affected by an elevation of privilege vulnerability.
DescriptionThe version of Symantec Endpoint Protection (SEP) Client installed on the remote Windows host is prior to 184.108.40.206. It is, therefore, affected by an elevation of privilege vulnerability due to improper path restrictions when loading DLL files. A local attacker can exploit this, by placing a specially crafted DLL file in the installation path or DLL search path, to inject and execute arbitrary code.
SolutionUpgrade to Symantec Endpoint Protection (SEP) version 220.127.116.11 or later.