E17-0g5n1
CVSS:
7.1 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
False Positive:
f
Variants:
2
Year:
2017
Description
This strike exploits a tamper-protection bypass vulnerability in Symantec Endpoint Protection.
The vulnerability is due to lack of User Interface Privilege Isolation for source validation of Windows API messages.
By exploiting this vulnerability, an attacker could alter Symantec Endpoint Protection user interface that could result in denying end user ability to use the antivirus or displaying to the end user erroneous information about antivirus activity.