N/A

Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory.

N/A

N/A

Symantec Endpoint Protection 信息泄露漏洞

Symantec Endpoint Protection是美国赛门铁克（Symantec）公司的一套防病毒软件。该软件可跨物理和虚拟系统提供安全防护功能。 Symantec Endpoint Protection（Small Business Edition）中的ccSetx86.sys文件的0x224844 IOCTL handler功能存在信息泄露漏洞。该漏洞源于网络系统或产品在运行过程中存在配置等错误。未授权的攻击者可利用漏洞获取受影响组件敏感信息。

N/A

N/A