The host is installed with Symantec Endpoint Protection (SEP) 12.1 before 12.1 RU6-MP7 and is prone to a denial-of-service vulnerability. A flaw is present in the application, which fails to sanitize logged-in user input. Successful exploitation could allow attackers to run arbitrary code on the local machine with kernel-level privileges.