Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Endpoint_protection
(Symantec)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 71 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2016-06-30 | CVE-2016-2209 | Buffer overflow in Dec2SS.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 7.3 | ||
| 2016-06-30 | CVE-2016-2210 | Buffer overflow in Dec2LHA.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 7.3 | ||
| 2016-06-30 | CVE-2016-2211 | The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 7.8 | ||
| 2017-04-14 | CVE-2016-5309 | The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows before 12.1.6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1.6 MP6; Symantec Endpoint Protection for Small Business Enterprise (SEP SBE/SEP.Cloud); Symantec Endpoint Protection Cloud (SEPC) for... | Symantec_data_center_security_server, Advanced_threat_protection, Csapi, Email_security\.cloud, Endpoint_protection, Endpoint_protection_cloud, Endpoint_protection_for_small_business, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Messaging_gateway, Messaging_gateway_for_service_providers, Protection_engine, Protection_for_sharepoint_servers, Web_gateway, Web_security\.cloud | 5.5 | ||
| 2017-04-14 | CVE-2016-5310 | The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows before 12.1.6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1.6 MP6; Symantec Endpoint Protection for Small Business Enterprise (SEP SBE/SEP.Cloud); Symantec Endpoint Protection Cloud (SEPC) for... | Symantec_data_center_security_server, Advanced_threat_protection, Csapi, Email_security\.cloud, Endpoint_protection, Endpoint_protection_cloud, Endpoint_protection_for_small_business, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Messaging_gateway, Messaging_gateway_for_service_providers, Protection_engine, Protection_for_sharepoint_servers, Web_gateway, Web_security\.cloud | 5.5 | ||
| 2017-11-06 | CVE-2017-6331 | Prior to SEP 14 RU1 Symantec Endpoint Protection product can encounter an issue of Tamper-Protection Bypass, which is a type of attack that bypasses the real time protection for the application that is run on servers and clients. | Endpoint_protection | N/A | ||
| 2019-04-25 | CVE-2018-18366 | Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory. | Endpoint_protection, Endpoint_protection_cloud, Endpoint_protection_cloud_agent, Norton_security | 6.5 | ||
| 2019-04-25 | CVE-2018-12244 | SEP (Mac client) prior to and including 12.1 RU6 MP9 and prior to 14.2 RU1 may be susceptible to a CSV/DDE injection (also known as formula injection) vulnerability, which is a type of issue whereby an application or website allows untrusted input into CSV files. | Endpoint_protection | 6.3 | ||
| 2016-06-30 | CVE-2016-3646 | The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 8.4 | ||
| 2016-06-30 | CVE-2016-3645 | Integer overflow in the TNEF unpacker in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01;... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 9.8 |