The host is installed with Symantec Endpoint Protection Client before 12.1 RU6 MP5 and is prone to a ZIP decompression memory access violation vulnerability. A flaw is present in the application, which fails to properly handle a crafted ZIP archive that is mishandled during decompression. Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation).