CVE-2016-5311
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client due to a DLL-preloading without path restrictions, which could let a local malicious user obtain system privileges.
Se presenta una vulnerabilidad de escalada de privilegios en Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Protection Small Business Edition Cloud y Endpoint Protection Cloud Client, debido a una precarga de DLL sin restricciones de ruta, que podrĂa permitir a un usuario malicioso local obtener privilegios system.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-06-06 CVE Reserved
- 2020-01-09 CVE Published
- 2024-02-18 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-427: Uncontrolled Search Path Element
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/94295 | Third Party Advisory | |
| http://www.securitytracker.com/id/1037323 | Third Party Advisory | |
| http://www.securitytracker.com/id/1037324 | Third Party Advisory | |
| http://www.securitytracker.com/id/1037325 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Symantec Search vendor "Symantec" | Endpoint Protection Search vendor "Symantec" for product "Endpoint Protection" | < 22.8.0.50 Search vendor "Symantec" for product "Endpoint Protection" and version " < 22.8.0.50" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Endpoint Protection Cloud Search vendor "Symantec" for product "Endpoint Protection Cloud" | < 22.8.0.50 Search vendor "Symantec" for product "Endpoint Protection Cloud" and version " < 22.8.0.50" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton 360 Search vendor "Symantec" for product "Norton 360" | < 22.7 Search vendor "Symantec" for product "Norton 360" and version " < 22.7" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton Antivirus Search vendor "Symantec" for product "Norton Antivirus" | < 22.7 Search vendor "Symantec" for product "Norton Antivirus" and version " < 22.7" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton Antivirus With Backup Search vendor "Symantec" for product "Norton Antivirus With Backup" | < 22.7 Search vendor "Symantec" for product "Norton Antivirus With Backup" and version " < 22.7" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton Family Search vendor "Symantec" for product "Norton Family" | < 22.7 Search vendor "Symantec" for product "Norton Family" and version " < 22.7" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton Internet Security Search vendor "Symantec" for product "Norton Internet Security" | < 22.7 Search vendor "Symantec" for product "Norton Internet Security" and version " < 22.7" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton Security Search vendor "Symantec" for product "Norton Security" | < 22.7 Search vendor "Symantec" for product "Norton Security" and version " < 22.7" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton Security With Backup Search vendor "Symantec" for product "Norton Security With Backup" | < 22.7 Search vendor "Symantec" for product "Norton Security With Backup" and version " < 22.7" | - |
Affected
| ||||||