Hello,
As of 14, Symantec Endpoint Protection includes Generic Exploit Mitigation, which stops vulnerability attacks on Windows client computers. Generic Exploit Mitigation is enabled by default in the Intrusion Prevention policy.
The policy includes a list of rules for the applications that Generic Exploit Mitigation protects. By default, Generic Exploit Mitigation is enabled for all applications that appear in the policy.
To change the default Generic Exploit Mitigation configuration
-
In the console, on the Policies page, open an Intrusion Prevention policy.
-
In the policy, click Generic Exploit Mitigation.
-
Check or uncheck Enable Generic Exploit Mitigation.
-
If you need to troubleshoot a problem with an application, uncheck it in the list.
-
Click OK.
Typically, you should keep Generic Exploit Mitigation enabled.
You might want to disable Generic Exploit Mitigation if some of your applications become unstable.
Check these Articles:
Using Generic Exploit Mitigation
https://support.symantec.com/en_US/article.HOWTO12...
Regards,