When enabling strong password enforcement in DLP versions 12.0 and prior, administrators are able to specify existing weak password in the password update dialogue without error, allowing them to continue to use the weak password.
Symantec implemented a fix for this in DLP 12.5. It is strongly recommended that customers upgrade to this build to address this vulnerability.
Imported Document ID: TECH225977
Subscribing will provide email updates when this Article is updated. Login is required.