2 matches found
CVE-2018-18366
Symantec Endpoint Protection Small Business Edition ccSetx86.sys kernel driver (IOCTL 0x224844) has an information-disclosure vulnerability. A specially crafted IRP can cause the driver to return uninitialized kernel memory to a user-mode process, potentially leaking sensitive data. The issue is ...
CVE-2018-18369
The CVE-2018-18369 entry describes a DLL Preloading vulnerability affecting Windows clients: Norton Security prior to 22.16.3 and SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, and SEP-12.1.7484.7002. Root cause is a DLL loading order issue that can allow an attacker to substitute a m...