CVE-2007-3673

Currently unrated

Key Information:

Vendor
Symantec
Status
Norton Antivirus
Client Security
Norton System Works
Norton Antispam
Vendor
CVE Published:
15 July 2007

Summary

Symantec symtdi.sys before 7.0.0, as distributed in Symantec AntiVirus Corporate Edition 9 through 10.1 and Client Security 2.0 through 3.1, Norton AntiSpam 2005, and Norton AntiVirus, Internet Security, Personal Firewall, and System Works 2005 and 2006; allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in an IOCTL 0x83022323 request to \symTDI, which results in memory overwrite.

References

http://secunia.com/advisories/26042
third-party-advisoryx_refsource_SECUNIA
http://securityresponse.symantec.com/avcenter/security/Co...
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/35347
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.