CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2016-6593 – Symantec VIP Access Arbitrary DLL Execution
https://notcve.org/view.php?id=CVE-2016-6593
A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop before 2.2.2, which could let local malicious users execute arbitrary code. Existe una vulnerabilidad de ejecución de código durante el inicio en las bibliotecas jhi.dll y otpiha.dll en Symantec VIP Access Desktop versiones anteriores a la versión 2.2.2, lo que podría permitir a usuarios maliciosos locales ejecutar código arbitrario. Symantec VIP Access versions prior to 2.2.2 suffer from an arbitrary dll execution vulnerability. • http://packetstormsecurity.com/files/140098/Symantec-VIP-Access-Arbitrary-DLL-Execution.html http://www.securityfocus.com/archive/1/539889/100/0/threaded http://www.securityfocus.com/bid/94731 https://support.symantec.com/us/en/article.symsa1388.html • CWE-426: Untrusted Search Path •