Zero-day flaws found in Symantec's Endpoint Protection

posted Jul 30, 2014, 9:08 PM by Unknown user   [ updated Oct 15, 2014, 12:00 AM ]

Offensive Security said the flaws could be used to gain full system access,

Symantec's Endpoint Protection product has three zero-day flaws that could allow a logged-in user to move to a higher access level on a computer, according to a penetration testing and training company.

The three flaws, all known as privilege escalation vulnerabilities, were found during a security test of a financial services company, said Mati Aharoni, lead trainer and developer for Offensive Security, in a phone interview.

Continue at:
Video at: