The host is installed with Symantec Endpoint Protection Client 11.x before 11.0.7.4 or 12.x before 12.1.2 (RU2) and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly validate the authentication of authorized users. Successful exploitation allows an attacker who can access a limited admin account to potentially assume the identification and privileges of any other authorized console user to include full admin.