CVE-2016-6593

A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop before 2.2.2, which could let local malicious users execute arbitrary code.
Configurations

Configuration 1 (hide)

cpe:2.3:a:symantec:vip_access_desktop:*:*:*:*:*:*:*:*

History

21 Nov 2024, 02:56

Type Values Removed Values Added
References () http://packetstormsecurity.com/files/140098/Symantec-VIP-Access-Arbitrary-DLL-Execution.html - Exploit, Third Party Advisory, VDB Entry () http://packetstormsecurity.com/files/140098/Symantec-VIP-Access-Arbitrary-DLL-Execution.html - Exploit, Third Party Advisory, VDB Entry
References () http://www.securityfocus.com/archive/1/539889/100/0/threaded - Third Party Advisory, VDB Entry () http://www.securityfocus.com/archive/1/539889/100/0/threaded - Third Party Advisory, VDB Entry
References () http://www.securityfocus.com/bid/94731 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/94731 - Third Party Advisory, VDB Entry
References () https://support.symantec.com/us/en/article.symsa1388.html - Vendor Advisory () https://support.symantec.com/us/en/article.symsa1388.html - Vendor Advisory

Information

Published : 2020-01-08 16:15

Updated : 2024-11-21 02:56


NVD link : CVE-2016-6593

Mitre link : CVE-2016-6593

CVE.ORG link : CVE-2016-6593


JSON object : View

Products Affected

symantec

  • vip_access_desktop
CWE
CWE-426

Untrusted Search Path