Vulnerability identifier: #VU25326
Vulnerability risk: Medium
CVSSv3.1:
CVE-ID:
CWE-ID:
CWE-125
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
Symantec Endpoint Protection
Client/Desktop applications /
Antivirus software/Personal firewalls
Symantec Endpoint Protection Small Business Edition
Client/Desktop applications /
Antivirus software/Personal firewalls
Vendor: Broadcom
Description
The vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the "AvHostPlugin.dll". A local user can trigger out-of-bounds read error and read contents of memory on the system.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
Symantec Endpoint Protection: 14.2 RU1 - 14.2 RU2
Symantec Endpoint Protection Small Business Edition: 14.0.1904.0000 - 14.2.5323.2000
CPE
External links
http://support.symantec.com/us/en/article.SYMSA1505.html
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?