Symantec Endpoint Protection v12.1 / Tamper-Protection Bypass Exploit

Exploit for windows platform in category local exploits + Credits: John Page a.k.a hyp3rlinx Vendor: ======= www.symantec.com Product: =========== Symantec Endpoint Protection v12.1.6 12.1 RU6 MP5 Symantec 12.1.7004.6500 Vulnerability Type: =================== Tamper-Protection Bypass Denial Of...

Symantec Endpoint Protection 12.1.6 Tamper Protection Bypass

Credits: John Page a.k.a hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/CVE-2017-6331-SYMANTEC-ENDPOINT-PROTECTION-TAMPER-PROTECTION-BYPASS.txt + ISR: ApparitionSec Vendor: ======= www.symantec.com Product: =========== Symantec Endpoint...

Symantec Endpoint Protection 12.1 - Tamper-Protection Bypass

Symantec Endpoint Protection 12.1 - Tamper-Protection Bypass + Credits: John Page a.k.a hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/CVE-2017-6331-SYMANTEC-ENDPOINT-PROTECTION-TAMPER-PROTECTION-BYPASS.txt + ISR: ApparitionSec Vendor: =======...

CVE-2017-6331

creationtimestamp| type| source ---|---|--- 2017-11-10 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43134...

Symantec Endpoint Protection Client 12.1.x < 12.1 RU6 MP9 / 14.0.x < 14.0 RU1 Multiple Vulnerabilities (SYM17-011)

The version of Symantec Endpoint Protection SEP Client installed on the remote host is 12.1.x prior to 12.1 RU6 MP9 or 14.0.x prior to 14.0 RU1. It is, therefore, affected by a multiple vulnerabilities as referenced in the advisory. Note that Nessus has not tested for this issue but has instead...

Symantec Endpoint Protection Security Bypass Vulnerability (SYM17-011)

Symantec Endpoint Protection is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2017-6331

Symantec Endpoint Protection (SEP) up to 12.1.6 RU6 MP5 / 12.1.x before RU6 MP9 or 14.0 before RU1 is affected by CVE-2017-6331. The issue is a Tamper-Protection Bypass caused by SEP not validating WinAPI message sources (UIPI), allowing spoofed UI messages to potentially disable or bypass real‑t...

CVE-2017-6331

Prior to SEP 14 RU1 Symantec Endpoint Protection product can encounter an issue of Tamper-Protection Bypass, which is a type of attack that bypasses the real time protection for the application that is run on servers and clients...

Symantec Endpoint Protection Multiple Issues

SUMMARY Symantec has released a set of updates to address three issues in the Symantec Endpoint Protection SEP product. AFFECTED PRODUCTS Symantec Endpoint Protection SEP --- CVE | Affected Versions | Remediation CVE-2017-13681 | Prior to 12.1 RU6 MP9 | Upgrade to 12.1 RU6 MP9 Symantec Endpoint...