Symantec Endpoint Protection Manager < 12.1 RU3 Code Execution
High Nessus Network Monitor Plugin ID 6887
SynopsisThe endpoint management application installed on the remote Windows host is affected by a code execution vulnerability.
DescriptionVersions of Symantec Endpoint Protection Manager earlier than 12.1 RU3, are potentially affected by a buffer overflow vulnerability in the 'secars.dll' component. By exploiting this flaw, a remote, unauthenticated attacker could execute arbitrary code on the remote host subject to the privileges of the user running the affected application.
SolutionUpgrade to Symantec Endpoint Protection 12.1 RU3 or later.