{"api_version":"1","generated_at":"2026-04-23T09:50:54+00:00","cve":"CVE-2016-5311","urls":{"html":"https://cve.report/CVE-2016-5311","api":"https://cve.report/api/cve/CVE-2016-5311.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2016-5311","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2016-5311"},"summary":{"title":"CVE-2016-5311","description":"A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client due to a DLL-preloading without path restrictions, which could let a local malicious user obtain system privileges.","state":"PUBLIC","assigner":"secure@symantec.com","published_at":"2020-01-09 20:15:00","updated_at":"2020-01-29 15:27:00"},"problem_types":["CWE-427"],"metrics":[],"references":[{"url":"http://www.securityfocus.com/bid/94295","name":"http://www.securityfocus.com/bid/94295","refsource":"MISC","tags":["Third Party Advisory","VDB Entry"],"title":"Multiple Symantec Products CVE-2016-5311 DLL Loading Local Privilege Escalation Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://www.securitytracker.com/id/1037324","name":"http://www.securitytracker.com/id/1037324","refsource":"MISC","tags":["Third Party Advisory","VDB Entry"],"title":"Norton Internet Security DLL Loading Error Lets Local Users Obtain System Privileges - SecurityTracker","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20161117_00","name":"https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20161117_00","refsource":"CONFIRM","tags":["Vendor Advisory"],"title":"Security Advisories Relating to Symantec Products - Symantec Norton Client DLL Pre-Loading Uncontrolled Search Path Elevation of Privilege - 2016-11-17T15:09:19 PST\n\t| Symantec","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securitytracker.com/id/1037323","name":"http://www.securitytracker.com/id/1037323","refsource":"MISC","tags":["Third Party Advisory","VDB Entry"],"title":"Norton Anti-Virus DLL Loading Error Lets Local Users Obtain System Privileges - SecurityTracker","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securitytracker.com/id/1037325","name":"http://www.securitytracker.com/id/1037325","refsource":"MISC","tags":["Third Party Advisory","VDB Entry"],"title":"Symantec Endpoint Protection DLL Loading Error Lets Local Users Obtain System Privileges - SecurityTracker","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2016-5311","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2016-5311","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"endpoint_protection","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"endpoint_protection","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"endpoint_protection_cloud","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"endpoint_protection_cloud","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_360","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_360","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_antivirus","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_antivirus","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_antivirus_with_backup","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_antivirus_with_backup","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_family","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_family","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_internet_security","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_internet_security","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_security","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_security","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_security_with_backup","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2016","cve_id":"5311","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"symantec","cpe5":"norton_security_with_backup","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"secure@symantec.com","ID":"CVE-2016-5311","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"vendor_name":"Symantec","product":{"product_data":[{"product_name":"Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360","version":{"version_data":[{"version_value":"before 22.7"}]}},{"product_name":"Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client","version":{"version_data":[{"version_value":"before 22.8.0.50"}]}}]}}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client due to a DLL-preloading without path restrictions, which could let a local malicious user obtain system privileges."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"untrusted search path"}]}]},"references":{"reference_data":[{"url":"http://www.securityfocus.com/bid/94295","refsource":"MISC","name":"http://www.securityfocus.com/bid/94295"},{"url":"http://www.securitytracker.com/id/1037323","refsource":"MISC","name":"http://www.securitytracker.com/id/1037323"},{"url":"http://www.securitytracker.com/id/1037324","refsource":"MISC","name":"http://www.securitytracker.com/id/1037324"},{"url":"http://www.securitytracker.com/id/1037325","refsource":"MISC","name":"http://www.securitytracker.com/id/1037325"},{"refsource":"CONFIRM","name":"https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20161117_00","url":"https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20161117_00"}]}},"nvd":{"publishedDate":"2020-01-09 20:15:00","lastModifiedDate":"2020-01-29 15:27:00","problem_types":["CWE-427"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseScore":7.8,"baseSeverity":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:C/I:C/A:C","accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE","baseScore":6.9},"severity":"MEDIUM","exploitabilityScore":3.4,"impactScore":10,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:symantec:norton_antivirus:*:*:*:*:*:*:*:*","versionEndExcluding":"22.7","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:symantec:norton_family:*:*:*:*:*:*:*:*","versionEndExcluding":"22.7","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:symantec:norton_antivirus_with_backup:*:*:*:*:*:*:*:*","versionEndExcluding":"22.7","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:symantec:norton_security:*:*:*:*:*:*:*:*","versionEndExcluding":"22.7","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:symantec:norton_360:*:*:*:*:*:*:*:*","versionEndExcluding":"22.7","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:symantec:norton_internet_security:*:*:*:*:*:*:*:*","versionEndExcluding":"22.7","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:symantec:norton_security_with_backup:*:*:*:*:*:*:*:*","versionEndExcluding":"22.7","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:symantec:endpoint_protection:*:*:*:*:*:*:*:*","versionEndExcluding":"22.8.0.50","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:symantec:endpoint_protection_cloud:*:*:*:*:*:*:*:*","versionEndExcluding":"22.8.0.50","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2016","CveId":"5311","Ordinal":"91367","Title":"CVE-2016-5311","CVE":"CVE-2016-5311","Year":"2016"},"notes":[{"CveYear":"2016","CveId":"5311","Ordinal":"1","NoteData":"A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client due to a DLL-preloading without path restrictions, which could let a local malicious user obtain system privileges.","Type":"Description","Title":null},{"CveYear":"2016","CveId":"5311","Ordinal":"2","NoteData":"2020-01-09","Type":"Other","Title":"Published"},{"CveYear":"2016","CveId":"5311","Ordinal":"3","NoteData":"2020-01-09","Type":"Other","Title":"Modified"}]}}}