CVE-2016-5311
N/A
N/A
Summary
A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client due to a DLL-preloading without path restrictions, which could let a local malicious user obtain system privileges.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Symantec | Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360 | before 22.7 | affected |
| Symantec | Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client | before 22.8.0.50 | affected |
Weaknesses
- untrusted search path
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/94295
- http://www.securitytracker.com/id/1037323
- http://www.securitytracker.com/id/1037324
- http://www.securitytracker.com/id/1037325
- https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20161117_00
References
- http://www.securityfocus.com/bid/94295
- http://www.securitytracker.com/id/1037323
- http://www.securitytracker.com/id/1037324
- http://www.securitytracker.com/id/1037325
- https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20161117_00
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.