PT-2019-12926 · Symantec · Symantec Endpoint Protection+1

Published

2019-11-14

Updated

2020-08-24

CVE-2019-12758

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Symantec Endpoint Protection versions prior to 14.2 RU2

Description The issue allows an individual to execute unsigned code, potentially bypassing self-defense mechanisms. This could enable an attacker to execute code without a proper digital signature.

Recommendations For Symantec Endpoint Protection versions prior to 14.2 RU2, update to version 14.2 RU2 or later to resolve the issue.

Exploit

Fix

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2019-12758

Affected Products

Symantec Endpoint Protection

Symantec Endpoint Protection Client

PT-2019-12926 · Symantec · Symantec Endpoint Protection+1

CVE-2019-12758

Weakness Enumeration

Related Identifiers

Affected Products

References · 6