The host is installed with Symantec Endpoint Protection (SEP) 12.1 before 12.1 RU1-MP1 and is prone to a directory traversal vulnerability. A flaw is present in the application, which fails to sanitize malicious input. Successful exploitation could allow attackers to delete files.