Vulnerability Details CVE-2015-8801
Race condition in the client in Symantec Endpoint Protection (SEP) 12.1 before RU6 MP5 allows local users to bypass intended restrictions on USB file transfer by conducting filesystem operations before the SEP device manager recognizes a new USB device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.9%
CVSS Severity
CVSS v3 Score 2.9
CVSS v2 Score 3.3
References
- http://www.securityfocus.com/bid/91446
- http://www.securitytracker.com/id/1036196
- https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160628_01
- http://www.securityfocus.com/bid/91446
- http://www.securitytracker.com/id/1036196
- https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160628_01
Products affected by CVE-2015-8801
-
cpe:2.3:a:symantec:endpoint_protection_manager:12.1.6