Code-execution vulnerability in Symantec VIP Access Desktop before 2.2.2 allows local malicious users to execute arbitrary code during startup

Code-execution vulnerability in Symantec VIP Access Desktop before 2.2.2 allows local malicious users to execute arbitrary code during startup

CVE-2016-6593 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop before 2.2.2, which could let local malicious users execute arbitrary code.

Learn more about our Cis Benchmark Audit For Desktop Software.