CVE-2016-9093Improper Input Validation in Endpoint Protection

CWE-20Improper Input Validation3 documents3 sources
Severity
7.0HIGHNVD
EPSS
0.1%
top 74.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Symantec Endpoint ProtectionSymantec Corporation Endpoint Protection
Timeline
PublishedApr 16
Latest updateMay 14

Description

A version of the SymEvent Driver that shipped with Symantec Endpoint Protection 12.1 RU6 MP6 and earlier fails to properly sanitize logged-in user input. SEP 14.0 and later are not impacted by this issue. A non-admin user would need to be able to save an executable file to disk and then be able to successfully run that file. If properly constructed, the file could access the driver interface and potentially manipulate certain system calls. On all 32-bit systems and in most cases on 64-bit system

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages2 packages

CVEListV5symantec_corporation/endpoint_protectionPrior to SEP 12.1 RU6 MP7

🔴Vulnerability Details

2
GHSA
GHSA-x9r7-96pf-frgq: A version of the SymEvent Driver that shipped with Symantec Endpoint Protection 122022-05-14
CVEList
CVE-2016-9093: A version of the SymEvent Driver that shipped with Symantec Endpoint Protection 122018-04-16
CVE-2016-9093 — Improper Input Validation in Symantec | cvebase