Symantec Endpoint Protection clients place detected malware in quarantine as part of the intended product functionality. The quarantine logs can be exported for review by the user in a variety of formats including .CSV files. Prior to 14.0 MP1 and 12.1 RU6 MP7, the potential exists for file metadata to be interpreted and evaluated as a formula. Successful exploitation of an attack of this type requires considerable direct user-interaction from the user exporting and then opening the log files on the intended target client.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: symantec
Published: 2018-04-16T18:00:00Z
Updated: 2024-09-16T17:18:11.443Z
Reserved: 2016-10-28T00:00:00
Link: CVE-2016-9094
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-04-16T19:29:00.293
Modified: 2018-05-22T17:18:41.500
Link: CVE-2016-9094
Redhat
No data.