CVE-2015-8801: Race Condition
First published: Thu Jun 30 2016(Updated: )
Race condition in the client in Symantec Endpoint Protection (SEP) 12.1 before RU6 MP5 allows local users to bypass intended restrictions on USB file transfer by conducting filesystem operations before the SEP device manager recognizes a new USB device.
Credit: secure@symantec.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Symantec Endpoint Protection | <=12.1.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2015-8801?
CVE-2015-8801 is categorized as a medium-severity vulnerability due to its ability to allow local users to bypass restrictions on USB file transfers.
How do I fix CVE-2015-8801?
To fix CVE-2015-8801, upgrade to Symantec Endpoint Protection version 12.1 RU6 MP5 or later.
Who is affected by CVE-2015-8801?
CVE-2015-8801 affects users of Symantec Endpoint Protection version 12.1 before RU6 MP5.
What type of attack does CVE-2015-8801 enable?
CVE-2015-8801 enables local users to bypass device restrictions, facilitating unauthorized USB file transfers.
Is a workaround available for CVE-2015-8801?
No official workaround is documented for CVE-2015-8801; the best mitigation is to apply the recommended software update.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/event
- agent/description
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/symantec
- canonical/symantec endpoint protection
- version/symantec endpoint protection/12.1.6