Privilege Escalation via Untrusted Search Path Vulnerability in Symantec Endpoint Protection

Privilege Escalation via Untrusted Search Path Vulnerability in Symantec Endpoint Protection

CVE-2015-8113 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Untrusted search path vulnerability in the client in Symantec Endpoint Protection (SEP) 12.1 before 12.1-RU6-MP3 allows local users to gain privileges via a Trojan horse DLL in a client install package. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1492.

Learn more about our User Device Pen Test.