EUVD-2016-7511

Malware in sbrugna...

EUVD-2017-15390

Malware in sbrugna...

CVE-2016-6593

A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop before 2.2.2, which could let local malicious users execute arbitrary code...

CVE-2016-6593

A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop before 2.2.2, which could let local malicious users execute arbitrary code...

CVE-2016-6593

Summary: Symantec VIP Access Desktop before 2.2.2 is affected by a local code execution vulnerability during startup. The UI Manager loads DLLs from the current working folder, allowing a local attacker to replace required DLLs (jhi.dll/otpiha.dll) with malicious ones and execute arbitrary code i...

CVE-2016-6593

A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop before 2.2.2, which could let local malicious users execute arbitrary code...

Symantec VIP Access Desktop Detection (Windows SMB Login)

Detects the installed version of Symantec VIP Access Desktop. The script logs in via smb, searches for SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

CVE-2017-6329

Symantec VIP Access for Desktop prior to 2.2.4 can be susceptible to a DLL Pre-Loading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, the...

Code injection

Symantec VIP Access for Desktop prior to 2.2.4 can be susceptible to a DLL Pre-Loading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, the...

CVE-2017-6329

Symantec VIP Access for Desktop prior to 2.2.4 can be susceptible to a DLL Pre-Loading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, the...

CVE-2017-6329

Symantec VIP Access for Desktop prior to 2.2.4 can be susceptible to a DLL Pre-Loading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, the...

CVE-2017-6329

Symantec VIP Access for Desktop (before version 2.2.4) is affected by a DLL Pre-Loading vulnerability. The issue occurs when the application loads a DLL and an attacker supplies a malicious DLL, following the DLL search order to load it. This can allow writing to a file and potentially executing ...

Symantec VIP Access DLL Pre-Loading

SUMMARY Symantec has released an update to address an issue that was discovered in Symantec Validation & Identification Protection VIP Access for Desktop. AFFECTED PRODUCTS Symantec VIP Access --- CVE | Affected Versions | Remediation CVE-2017-6329 | Prior to 2.2.4 | Upgrade to 2.2.4 ISSUES...

Symantec VIP Access Arbitrary DLL Execution

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SYMANTEC-VIP-ACCESS-ARBITRARY-DLL-EXECUTION.txt + ISR: ApparitionSec Vendor: ================ www.symantec.com Product: =================== Symantec VIP Access Desktop...

Symantec VIP Access Desktop Arbitrary DLL Execution

SUMMARY Symantec has released an update to address a finding in VIP Access Desktop that could allow a local user to force VIP Access Desktop UI Manager to execute an arbitrary formatted DLL with logged-on user privileges. AFFECTED PRODUCTS Symantec VIP Access Desktop --- CVE | Affected Versions |...