Denial of service in Symantec Endpoint Protection

#VU576 Denial of service in Symantec Endpoint Protection

Published: 2020-03-18

Vulnerability identifier: #VU576

Vulnerability risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C]

CVE-ID: CVE-2016-5310

CWE-ID: CWE-284

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
Symantec Endpoint Protection
Client/Desktop applications / Antivirus software/Personal firewalls

Vendor: Broadcom

Description
The vulnerability allows a remote user to cause denial of service on the target application.
The weakness exists due to memory corruption error. By using specially crafted RAR file attacker can cause denial of the application service.
Successful exploitation of the vulnerability resuslts in denial of service on the vulnerable application.

Mitigation
Update to 12.1.6 MP5.

Vulnerable software versions

External links
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=sec...

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

Denial of service in Symantec Endpoint Protection