Vulnerabilities > CVE-2020-5822 - Unspecified vulnerability in Symantec Endpoint Protection
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 77 |
Nessus
NASL family | Windows |
NASL id | SYMANTEC_ENDPOINT_PROT_CLIENT_SYMSA1505.NASL |
description | The version of Symantec Endpoint Protection (SEP) Client installed on the remote host is 14.x prior to 14.2.5569.2100. It is, therefore, affected by multiple vulnerabilities: - A privilege escalation vulnerability exists. An unauthenticated, remote attacker can exploit this to compromise the software application to gain elevated access to resources that are normally protected from an application or user. (CVE-2020-5820, CVE-2020-5822, CVE-2020-5823) - A DLL injection vulnerability exists. An unauthenticated, local attacker can exploit this to execute their own code in place of legitimate code as a means to perform an exploit. (CVE-2020-5821) - A denial of service (DoS) vulnerability exists. An unauthenticated, remote attacker can exploit this issue to make the application stop responding.(CVE-2020-5824) - An arbitrary file write vulnerability exists. An unauthenticated, remote attacker can exploit this to overwrite existing files on the resident system without proper privileges. (CVE-2020-5825) - An out-of-bounds read error exists. An unauthenticated, remote attacker can exploit this to read memory outside of the bounds of the memory that had been allocated to the program. (CVE-2020-5826) Note that Nessus has not tested for this issue but has instead relied only on the application |
last seen | 2020-03-18 |
modified | 2020-02-13 |
plugin id | 133675 |
published | 2020-02-13 |
reporter | This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/133675 |
title | Symantec Endpoint Protection Client 14.x < 14.2.5569.2100 Multiple Vulnerabilities (SYMSA1505) |
code |
|