Vulnerability Name:

CVE-2014-3434 (CCN-95062)

Assigned:2014-07-29
Published:2014-07-29
Updated:2017-08-29
Summary:Buffer overflow in the sysplant driver in Symantec Endpoint Protection (SEP) Client 11.x and 12.x before 12.1 RU4 MP1b, and Small Business Edition before SEP 12.1, allows local users to execute arbitrary code via a long argument to a 0x00222084 IOCTL call.
CVSS v3 Severity:9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:6.9 Medium (CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C)
5.4 Medium (Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
6.9 Medium (CCN CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C)
5.4 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-119
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2014-3434

Source: MISC
Type: UNKNOWN
http://packetstormsecurity.com/files/127772/Symantec-Endpoint-Protection-11.x-12.x-Kernel-Pool-Overflow.html

Source: SECUNIA
Type: UNKNOWN
58996

Source: SECUNIA
Type: UNKNOWN
59697

Source: EXPLOIT-DB
Type: Exploit
34272

Source: CCN
Type: US-CERT VU#252068
Symantec Endpoint Protection Client contains a kernel pool overflow vulnerability

Source: CERT-VN
Type: US Government Resource
VU#252068

Source: OSVDB
Type: UNKNOWN
109663

Source: CCN
Type: OSVDB ID: 109663
Symantec Endpoint Protection Multiple Unspecified Local Privilege Escalation

Source: BID
Type: Exploit
68946

Source: CCN
Type: BID-68946
Symantec Endpoint Protection Local Client ADC Buffer Overflow Vulnerability

Source: CCN
Type: Symantec Web site
Endpoint Protection

Source: CCN
Type: SYM14-013
Symantec Endpoint Protection Local Client Application Device Control Buffer Overflow

Source: CONFIRM
Type: Vendor Advisory
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140804_00

Source: XF
Type: UNKNOWN
symantec-endpoint-priv-escalation(95062)

Source: XF
Type: UNKNOWN
symantec-endpoint-priv-escalation(95062)

Source: CCN
Type: Packet Storm Security [08-05-2014]
Symantec Endpoint Protection 11.x / 12.x Kernel Pool Overflow

Source: EXPLOIT-DB
Type: EXPLOIT
Offensive Security Exploit Database [08-05-2014]

Vulnerable Configuration:Configuration 1:
  • cpe:/a:symantec:endpoint_protection:11.0:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.0:-:small_business:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    symantec endpoint protection 11.0
    symantec endpoint protection 12.0 -
    symantec endpoint protection 12.1