Unquoted Windows Search Path Privilege Escalation Vulnerability in Symantec Endpoint Encryption (SEE) 11.x

Unquoted Windows Search Path Privilege Escalation Vulnerability in Symantec Endpoint Encryption (SEE) 11.x

CVE-2015-8156 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Unquoted Windows search path vulnerability in EEDService in Symantec Endpoint Encryption (SEE) 11.x before 11.1.1 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as demonstrated by program.exe.

Learn more about our User Device Pen Test.