- 9.3.600 and earlier
- 9.4.200 and earlier
- 10.0.0 and earlier
The vulnerability is remediated in these versions:
- CVE-2016-8012 (CVSS: 7.8; Severity: Medium) is a client-side access control vulnerability in Intel Security Data Loss Prevention Endpoint 9.4.200, 9.3.600 allows attackers with Read-Write-Execute permissions to injects hook DLLs into other processes via pages in the target process memory get.
Intel Security recommends that all customers verify that they have applied the latest updates. Impacted users should install the relevant patches or hotfixes. For full instructions and information, see Knowledge Base article SB10185, Security Bulletin: Data Loss Prevention Endpoint update fixes PAGE_EXECUTE_READWRITE memory vulnerability (CVE-2016-8012)(https://kc.mcafee.com/corporate/index?page=content&id=SB10185