PT-2018-16834 · Symantec · Symantec Encryption Management Server

Published

2018-08-20

Updated

2018-10-16

CVE-2018-5243

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Symantec Encryption Management Server versions prior to 3.4.2 MP1

Description The issue may allow for a denial of service (DoS) exploit, where an attacker attempts to make a machine or network resource unavailable by disrupting services. This can be achieved by temporarily or indefinitely disrupting services of a specific host within a network.

Recommendations For versions prior to 3.4.2 MP1, update to version 3.4.2 MP1 or later to resolve the issue.

Fix

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

CVE-2018-5243

Affected Products

Symantec Encryption Management Server

PT-2018-16834 · Symantec · Symantec Encryption Management Server

CVE-2018-5243

Weakness Enumeration

Related Identifiers

Affected Products

References · 5