Vulnerabilities > CVE-2017-15525 - Unspecified vulnerability in Symantec Endpoint Encryption
Attack vector
ADJACENT_NETWORK Attack complexity
LOW Privileges required
HIGH Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
Prior to SEE v11.1.3MP1, Symantec Endpoint Encryption can be susceptible to a denial of service (DoS) attack, which is a type of attack whereby the perpetrator attempts to make a particular machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a specific host within a network.
Vulnerable Configurations
Nessus
NASL family | Windows |
NASL id | SYMANTEC_ENDPOINT_ENCRYPTION_DRIVE_ENCRYPTION_SYM17-012.NASL |
description | The version of the Symantec Endpoint Encryption (SEE) Drive Encryption Client installed on the remote Windows host is prior to 11.1.3 MP1. It is, therefore, affected by a denial of service and NULL pointer vulnerability. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 104573 |
published | 2017-11-15 |
reporter | This script is Copyright (C) 2004-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/104573 |
title | Symantec Endpoint Encryption < 11.1.3 MP1 (SYM17-012) |
code |
|
References
- http://www.securityfocus.com/bid/101697
- http://www.securityfocus.com/bid/101697
- https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20171113_00
- https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20171113_00