3 matches found
CVE-2014-3434
CVE-2014-3434 describes a kernel pool overflow in the Symantec Endpoint Protection (SEP) client sysplant driver. Affected products include SEP 11.x and SEP 12.x (before 12.1 RU4 MP1b) and SEP 12.1 Small Business Edition before 12.1 RU4 MP1b. The issue arises from insufficient validation of extern...
KLA10354 ACE vulnerability in Symantec Endpoint Protection
A buffer overflow was found in Symantec products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed argument. Original advisories Symantec advisory Exploitation Public exploits exist for this...
Symantec Endpoint Protection Local Client Application Device Control Buffer Overflow
SUMMARY Symantec is aware of a local access Symantec Endpoint Protection SEP client buffer overflow exploit that has been released publicly which could potentially cause a BSOD on the client or possibly allow unauthorized local privilege elevation on Symantec Endpoint Protection SEP clients...