Privilege Escalation Vulnerability in Symantec ProxyClient for Windows
CVE-2017-13674

7.8HIGH

Key Information:

Vendor: Symantec Corporation
Status: Proxyclient
Vendor: CVE Published:; 1 September 2017

What is CVE-2017-13674?

Symantec ProxyClient 3.4 for Windows is vulnerable to a privilege escalation flaw that could allow a malicious local user to escalate their privileges. By exploiting this vulnerability, an attacker could execute arbitrary code with LocalSystem privileges, potentially compromising system security and integrity. This situation underscores the importance of ensuring that software is up-to-date and secured against known vulnerabilities.

Affected Version(s)

ProxyClient 3.4

References

https://www.symantec.com/security-center/network-protecti...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/100554

vdb-entryx_refsource_BID

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 1, 2017
Vulnerability Reserved
Aug 24, 2017

Symantec Corporation

What is CVE-2017-13674?

Affected Version(s)

References

CVSS V3.1

Timeline