CVE-2015-8154
high
CVSS v3
8.8
CVSS v2
9.3
VIR risk
8.8
Description
The SysPlant.sys driver in the Application and Device Control (ADC) component in the client in Symantec Endpoint Protection (SEP) 12.1 before RU6-MP4 allows remote attackers to execute arbitrary code via a crafted HTML document, related to "RWX Permissions."
Predictions
Exploit likelihood
92%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: secure@symantec.com — http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160317_00
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| symantec | endpoint_protection_manager | {"endIncluding":"12.1"} | |
References
- http://www.securityfocus.com/bid/84344
- http://www.securitytracker.com/id/1035329
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160317_00
- http://www.securityfocus.com/bid/84344
- http://www.securitytracker.com/id/1035329
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160317_00
CWEs
CWE-264
Verify integrity in audit chain (admin only). AS-IS.