2 matches found
Design/Logic Flaw
Untrusted search path vulnerability in the client in Symantec Endpoint Protection SEP 12.1 before 12.1-RU6-MP3 allows local users to gain privileges via a Trojan horse DLL in a client install package. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1492...
CVE-2015-1492
Symantec Endpoint Protection Manager (SEPM) is affected by CVE-2015-1492: an untrusted search path/Trojan horse DLL vulnerability in the SEP client install package allows local privilege escalation when SEPM is version before 12.1 RU6 MP3. The issue is discussed in multiple sources (e.g., SYM15-0...