Remote Code Execution Vulnerability in Symantec Anti-Virus Engine
CVE-2016-2208

9.1CRITICAL

Key Information:

Vendor

Symantec
Status
Anti-virus Engine
Vendor
CVE Published:
19 May 2016

What is CVE-2016-2208?

A vulnerability in the kernel component of Symantec Anti-Virus Engine allows remote attackers to exploit a flaw by sending a specially crafted PE header file. This vulnerability can lead to arbitrary code execution or cause denial of service through memory access violations and system crashes. Users are advised to update their software to the latest version to mitigate this risk.

References

http://www.securityfocus.com/bid/90653
vdb-entryx_refsource_BID
https://www.exploit-db.com/exploits/39835/
exploitx_refsource_EXPLOIT-DB
https://bugs.chromium.org/p/project-zero/issues/detail?id...
x_refsource_MISC

EPSS Score

52% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.1
Severity:
CRITICAL
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.