CVE-2018-18369

Summary

Norton Security (Windows client) prior to 22.16.3 and SEP SBE (Windows client) prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 & SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead.

Affected Software

VendorProductVersion RangeStatus
Symantec CorporationNorton SecurityPrior to 22.16.3affected
Symantec CorporationSymantec Endpoint Protection Small Business EditionPrior to Cloud Agent 3.00.31.2817affected
Symantec CorporationSymantec Endpoint Protection Small Business EditionNIS-22.15.2.22affected
Symantec CorporationSymantec Endpoint Protection Small Business EditionSEP-12.1.7484.7002affected

Weaknesses

  • DLL Preloading

ADP Enrichment

CVE Program Container

Additional References

References