A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop before 2.2.2, which could let local malicious users execute arbitrary code.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/140098/Symantec-VIP-Access-Arbitrary-DLL-Execution.html | Exploit Third Party Advisory VDB Entry |
http://www.securityfocus.com/archive/1/539889/100/0/threaded | Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/94731 | Third Party Advisory VDB Entry |
https://support.symantec.com/us/en/article.symsa1388.html | Vendor Advisory |
http://packetstormsecurity.com/files/140098/Symantec-VIP-Access-Arbitrary-DLL-Execution.html | Exploit Third Party Advisory VDB Entry |
http://www.securityfocus.com/archive/1/539889/100/0/threaded | Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/94731 | Third Party Advisory VDB Entry |
https://support.symantec.com/us/en/article.symsa1388.html | Vendor Advisory |
Configurations
History
21 Nov 2024, 02:56
Type | Values Removed | Values Added |
---|---|---|
References | () http://packetstormsecurity.com/files/140098/Symantec-VIP-Access-Arbitrary-DLL-Execution.html - Exploit, Third Party Advisory, VDB Entry | |
References | () http://www.securityfocus.com/archive/1/539889/100/0/threaded - Third Party Advisory, VDB Entry | |
References | () http://www.securityfocus.com/bid/94731 - Third Party Advisory, VDB Entry | |
References | () https://support.symantec.com/us/en/article.symsa1388.html - Vendor Advisory |
Information
Published : 2020-01-08 16:15
Updated : 2024-11-21 02:56
NVD link : CVE-2016-6593
Mitre link : CVE-2016-6593
CVE.ORG link : CVE-2016-6593
JSON object : View
Products Affected
symantec
- vip_access_desktop
CWE
CWE-426
Untrusted Search Path