BAD_POOL_CALLER (c2) or KERNEL_MODE_HEAP_CORRUPTION (13A) occurs after running LiveUpdate

Situation


After running LiveUpdate on Symantec Endpoint Protection (SEP), the computer crashes indicating IDSvix86.sys/IDSvia64.sys as the cause of the exception.

Environment


LiveUpdate downloaded Intrusion Prevention signature sequence 2019/10/14 r61

Error


BAD_POOL_CALLER (c2) or KERNEL_MODE_HEAP_CORRUPTION (13A)

Solution



Symantec will update this article once more information is available. Click the Subscribe button to be notified of future updates through email.

Symantec has released Intrusion Prevention signature version 2019/10/14 r62 to resolve this issue.  These definitions are available now.

Please run LiveUpdate to download latest Intrusion Prevention signature 2019/10/14 r62, or rollback to an earlier known good content revision to prevent the BSOD situation. Please check How to Backdate Virus Definitions in Symantec Endpoint Protection Manager for more details on how to roll back definitions.

Source https://support.symantec.com/us/en/article.tech256643.html

antivirusSymantec Endpoint Protection
Comments (0)
Add Comment