Denial of Service Vulnerability in GEAR Software CD DVD Filter Driver by Symantec
CVE-2011-3477

5.5MEDIUM

Key Information:

Vendor: Symantec
Status: Norton 360; Norton Ghost; Backup Exec System Recovery; System Recovery 2011
Vendor: CVE Published:; 19 February 2018

Summary

The GEAR Software CD DVD Filter driver (GEARAspiWDM.sys) used in various Symantec products is susceptible to a vulnerability that allows local users to exploit unspecified vectors to trigger a denial of service, resulting in a system crash. This flaw affects multiple versions of Symantec's data protection software, highlighting the importance of keeping security software updated to mitigate potential vulnerabilities.

References

http://www.securityfocus.com/bid/47822

vdb-entryx_refsource_BID

https://www.symantec.com/security_response/securityupdate...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 19, 2018
Vulnerability Reserved
Sep 14, 2011