CVE-2015-1492

Name of the Vulnerable Software and Affected Versions Symantec Endpoint Protection version 12.1 through 12.1 before 12.1-RU6-MP1

Description The issue allows local users to gain privileges via a Trojan horse DLL in a client install package due to an untrusted search path vulnerability in the client.

Recommendations For Symantec Endpoint Protection versions prior to 12.1-RU6-MP1, update to version 12.1-RU6-MP1 or later to resolve the issue.