Vulnerabilities > CVE-2017-13675 - Unspecified vulnerability in Symantec Endpoint Encryption

CVSS 4.2 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

HIGH

Privileges required

HIGH

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

high complexity

symantec

nessus

NVD

Published: 2017-10-10

Updated: 2019-10-03

Summary

A denial of service (DoS) attack in Symantec Endpoint Encryption before SEE 11.1.3HF2 allows remote attackers to make a particular machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a specific host within a network.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Endpoint Encryption 6.0 Symantec Endpoint Encryption 6.1 Symantec Endpoint Encryption 6.2 Symantec Endpoint Encryption 6.2.1 Symantec Endpoint Encryption 6.2.2 Symantec Endpoint Encryption 7.0 Symantec Endpoint Encryption 7.0.2 Symantec Endpoint Encryption 7.0.3 Symantec Endpoint Encryption 7.0.4 Symantec Endpoint Encryption 7.0.5 Symantec Endpoint Encryption 7.0.6 Symantec Endpoint Encryption 7.0.7 Symantec Endpoint Encryption 7.0.8 Symantec Endpoint Encryption 7.6 Symantec Endpoint Encryption 8.0 Symantec Endpoint Encryption 8.0.1 Symantec Endpoint Encryption 8.2 Symantec Endpoint Encryption 8.2.1 Symantec Endpoint Encryption 11.0 Symantec Endpoint Encryption 11.0.0 Symantec Endpoint Encryption 11.0.1 Symantec Endpoint Encryption 11.1.0 Symantec Endpoint Encryption 11.1.1 Symantec Endpoint Encryption 11.1.2 Symantec Endpoint Encryption 11.1.3	50

Nessus

NASL family	Windows
NASL id	SYMANTEC_ENDPOINT_ENCRYPTION_DRIVE_ENCRYPTION_SYM17-010.NASL
description	The version of the Symantec Endpoint Encryption (SEE) Drive Encryption Client installed on the remote Windows host is prior to 11.1.3 HF23. It is, therefore, affected by an unspecified denial of service and kernel memory leak vulnerability.
last seen	2020-06-01
modified	2020-06-02
plugin id	103839
published	2017-10-13
reporter	This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/103839
title	Symantec Endpoint Encryption < 11.1.3 HF3 (SYM17-010)
code	# # (C) Tenable Network Security, Inc. # include("compat.inc"); if (description) { script_id(103839); script_version("1.8"); script_cvs_date("Date: 2019/11/12"); script_cve_id("CVE-2017-13675", "CVE-2017-13683"); script_bugtraq_id(101089, 101498); script_name(english:"Symantec Endpoint Encryption < 11.1.3 HF3 (SYM17-010)"); script_summary(english:"Checks the version of Symantec Endpoint Encryption Drive Encryption."); script_set_attribute(attribute:"synopsis", value: "A drive encryption management agent installed on the remote Windows host is affected by an Unspecified remote denial of service vulnerability."); script_set_attribute(attribute:"description", value: "The version of the Symantec Endpoint Encryption (SEE) Drive Encryption Client installed on the remote Windows host is prior to 11.1.3 HF23. It is, therefore, affected by an unspecified denial of service and kernel memory leak vulnerability."); # https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20171009_00 script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?e6dfa557"); script_set_attribute(attribute:"solution", value: "Upgrade to Symantec Endpoint Encryption version 11.1.3HF2 or later."); script_set_cvss_base_vector("CVSS2#AV:A/AC:M/Au:S/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C"); script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-13683"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"vuln_publication_date", value:"2017/10/09"); script_set_attribute(attribute:"patch_publication_date", value:"2017/10/09"); script_set_attribute(attribute:"plugin_publication_date", value:"2017/10/13"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/a:symantec:endpoint_encryption"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_family(english:"Windows"); script_copyright(english:"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_dependencies("symantec_endpoint_encryption_drive_encryption_installed.nbin"); script_require_keys("SMB/Registry/Enumerated", "installed_sw/Symantec Endpoint Encryption Drive Encryption Client"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("install_func.inc"); get_kb_item_or_exit("SMB/Registry/Enumerated"); app_name = "Symantec Endpoint Encryption Drive Encryption Client"; fix = "11.1.3.777"; install = get_single_install(app_name:app_name); version = install['version']; path = install['path']; if (ver_compare(ver:version, fix:fix, strict:FALSE) < 0) { port = get_kb_item("SMB/transport"); if (empty_or_null(port)) port = 445; report = report_items_str( report_items:make_array( "Path", path, "Installed version", version, "Fixed version", "11.1.3.777" ), ordered_fields:make_list("Path", "Installed version", "Fixed version") ); security_report_v4(port:port, severity:SECURITY_NOTE, extra:report); } else audit(AUDIT_INST_PATH_NOT_VULN, app_name, version, path);

Summary

Vulnerable Configurations

Nessus

References