CVE-2015-8801

Race condition in the client in Symantec Endpoint Protection (SEP) 12.1 before RU6 MP5 allows local users to bypass intended restrictions on USB file transfer by conducting filesystem operations before the SEP device manager recognizes a new USB device.
Configurations

Configuration 1 (hide)

cpe:2.3:a:symantec:endpoint_protection_manager:*:mp4:*:*:*:*:*:*

History

21 Nov 2024, 02:39

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/91446 - () http://www.securityfocus.com/bid/91446 -
References () http://www.securitytracker.com/id/1036196 - () http://www.securitytracker.com/id/1036196 -
References () https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160628_01 - Vendor Advisory () https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160628_01 - Vendor Advisory

Information

Published : 2016-06-30 23:59

Updated : 2024-11-21 02:39


NVD link : CVE-2015-8801

Mitre link : CVE-2015-8801

CVE.ORG link : CVE-2015-8801


JSON object : View

Products Affected

symantec

  • endpoint_protection_manager
CWE
CWE-254

7PK - Security Features

CWE-284

Improper Access Control