CVE-2017-13681

Name of the Vulnerable Software and Affected Versions Symantec Endpoint Protection versions prior to 12.1 RU6 MP9

Description The issue is a privilege escalation vulnerability, which allows a user to gain elevated access to resources normally protected at lower access levels. The capability of exploit is limited by the need to perform multiple file and directory writes to the local filesystem, making it not feasible in a standard drive-by type attack.

Recommendations For Symantec Endpoint Protection versions prior to 12.1 RU6 MP9, update to version 12.1 RU6 MP9 or later to resolve the issue.