These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
A local privilege escalation vulnerability exists in the PCTCore64.sys Windows kernel driver distributed with PC Tools Internet Security. The driver exposes a WDM device interface (PCTCoreDriver) that fails to enforce proper access controls, allowing unprivileged user-mode processes to open handles and invoke IOCTL handlers that perform sensitive, privileged operations. The vulnerability was published to [truncated]
CVE-2017-6327 affects Symantec Messaging Gateway and is described by the source corpus as a remote code execution vulnerability. It is listed in CISA’s Known Exploited Vulnerabilities (KEV) catalog, which means CISA has identified it as known to be exploited in the wild. The supplied record dates place the CVE/KEV entry at 2021-11-03 for this debrief, and the KEV entry directs defenders to apply updates p [truncated]
CVE-2013-1609 covers multiple unquoted Windows search path vulnerabilities in the File Collector and File PlaceHolder services of Symantec Enterprise Vault for File System Archiving. On affected systems, a local user could leverage the service path issue to run a Trojan horse program with elevated privileges. Symantec’s advisory and the NVD record place affected releases before 9.0.4 and 10.x before 10.0.1.