Securing security is getting tougher these days.
Just a day after learning that China has dropped Symantec security products off the government's list of approved software, the United States Computer Emergency Readiness Team (US-CERT) is warning customers using Symantec Endpoint Protection that a severe vulnerability exists.
A vulnerability exists that can allow attackers to gain elevated local privileges on computers running Symantec Endpoint Protection client versions 11.x and 12.x. The vulnerability is targeted toward the Application and Device control component.
Updates are available, and should be applied immediately. Symantec's KB article on the matter explains the issue and provides workarounds and mitigation techniques. The article was created on July 29 and updated yesterday.