4 matches found
CVE-2015-8156
Unquoted Windows search path vulnerability in EEDService in Symantec Endpoint Encryption SEE 11.x before 11.1.1 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as demonstrated by program.exe...
CVE-2015-8156
Summary of CVE-2015-8156 from provided documents The issue affects Symantec Endpoint Encryption (SEE), specifically the Drive Encryption/EEDService component in SEE 11.x before 11.1.1. A local attacker could exploit an unquoted Windows search path vulnerability to escalate privileges by placing a...
Symantec Endpoint Encryption < 8.x / 9.x < 11.1.1 Unquoted Search Path Local Privilege Escalation (SYM16-006)
The version of the Symantec Endpoint Encryption SEE Drive Encryption Client installed on the remote Windows host is prior to 11.1.1. It is, therefore, affected by a privilege escalation vulnerability due to an unquoted search path in EEDService. A local attacker can exploit this to escalate...
Symantec Endpoint Encryption Unquoted Service Path Local Elevation of Privilege
SUMMARY Symantec Endpoint Encryption SEE has an unquoted search path in EEDService. This could provide a non-privileged local user the ability to successfully insert arbitrary code in the root path. AFFECTED PRODUCTS Symantec Endpoint Encryption --- CVE | Affected Versions | Remediation...