Symantec Endpoint Protection Local Client ADC Buffer Overflow Vulnerability
BID:68946
Info
Symantec Endpoint Protection Local Client ADC Buffer Overflow Vulnerability
| Bugtraq ID: | 68946 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2014-3434 |
| Remote: | No |
| Local: | Yes |
| Published: | Jul 29 2014 12:00AM |
| Updated: | Jul 15 2015 12:14AM |
| Credit: | Matteo Memelli of Offensive Security |
| Vulnerable: |
Symantec Endpoint Protection 11.0 RU6-MP3(11.0.6300) 0 Symantec Endpoint Protection 11.0 RU6-MP2(11.0.6200) 0 Symantec Endpoint Protection 11.0 RU6-MP1(11.0.6100) 0 Symantec Endpoint Protection 12.1 RU1-MP1 Symantec Endpoint Protection 12.1 RU1 Symantec Endpoint Protection 12.1 MP1 Symantec Endpoint Protection 12.1 Symantec Endpoint Protection 11.0 RU7 MP2 Symantec Endpoint Protection 11.0 RU7 MP1 Symantec Endpoint Protection 11.0 Ru6mp2 Symantec Endpoint Protection 11.0 Ru6mp1 Symantec Endpoint Protection 11.0 Ru6a Symantec Endpoint Protection 11.0 RU6-MP3(11.0.63 Symantec Endpoint Protection 11.0 RU6-MP2(11.0.62 Symantec Endpoint Protection 11.0 RU6-MP1(11.0.61 Symantec Endpoint Protection 11.0 RU6(11.0.600x) Symantec Endpoint Protection 11.0 RU6 MP4 Symantec Endpoint Protection 11.0 RU6 MP3 Symantec Endpoint Protection 11.0 RU6 MP2 Symantec Endpoint Protection 11.0 RU6 MP1 Symantec Endpoint Protection 11.0 Ru6 Symantec Endpoint Protection 11.0 RU5 Symantec Endpoint Protection 11.0 RU4 Symantec Endpoint Protection 11.0 MR3 Symantec Endpoint Protection 11.0 MR2 Symantec Endpoint Protection 11.0 MR1 Symantec Endpoint Protection 11.0 |
| Not Vulnerable: | |
Discussion
Symantec Endpoint Protection Local Client ADC Buffer Overflow Vulnerability
Symantec Endpoint Protection Manager is prone to a local buffer-overflow vulnerability.
A local attacker may exploit this issue to execute arbitrary code with escalated privileges.
Symantec Endpoint Protection Manager is prone to a local buffer-overflow vulnerability.
A local attacker may exploit this issue to execute arbitrary code with escalated privileges.
Exploit / POC
Symantec Endpoint Protection Local Client ADC Buffer Overflow Vulnerability
The following exploit is available:
Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
The following exploit is available:
Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
Solution / Fix
Symantec Endpoint Protection Local Client ADC Buffer Overflow Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Symantec Endpoint Protection Local Client ADC Buffer Overflow Vulnerability
References:
References:
- Symantec Homepage (Symantec)