← voltar
CVE-2016-9094

CVE-2016-9094

EPSS 1.3%
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 1.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
16 abr 2018Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Symantec Endpoint Protection clients place detected malware in quarantine as part of the intended product functionality. The quarantine logs can be exported for review by the user in a variety of formats including .CSV files. Prior to 14.0 MP1 and 12.1 RU6 MP7, the potential exists for file metadata to be interpreted and evaluated as a formula. Successful exploitation of an attack of this type requires considerable direct user-interaction from the user exporting and then opening the log files on the intended target client.
Produtos afetados
Symantec Corporation · Endpoint Protection

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170306_00http://www.securityfocus.com/bid/96298http://www.securitytracker.com/id/1037961