Applications are crashing regularly, and around the same time as the crash Symantec Endpoint Protection Small Business Edition (SEP SBE) (Cloud) is generating an attack notification.
Attack: Structured Exception Handler Overwrite
Actions by a third-party add-in or application triggered the detection: Attack: Structured Exception Handler Overwrite.
Upgrade the add-in or application to the latest available version. (A threat may be attempting to exploit a known vulnerability in an earlier version.)
If events continue and the add-in or application is known to be good, submit the offending add-in to Symantec Security Response as a False Positive and explain the conditions of the detection.
Disable IPS PEP signature 61000
To disable the signature: