Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:14826
HistoryOct 26, 2006 - 12:00 a.m.

Symantec Product Security: Symantec Device Driver Elevation of Privileg

2006-10-2600:00:00
vulners.com
13
JSON

Symantec Product Security Advisory

October 23, 2006

SYM06-022 Symantec Device Driver Elevation of Privilege

Risk Impact: Medium
Remote Access: No
Local Access: Yes
Authentication Required: Yes
Exploit available: No

Overview
Symantec was notified of a vulnerability in a device driver which, if successfully exploited, could allow a local attacker to execute arbitrary code with elevated privileges or to crash the system.

Affected Products

Symantec AntiVirus Corporate Edition 8.1
Symantec AntiVirus Corporate Edition 9.0.3 and earlier
Symantec Client Security 1.1
Symantec Client Security 2.0.3 and earlier

Unaffected Products

Symantec AntiVirus Corporate Edition 8.1.1 MR9
Symantec AntiVirus Corporate Edition 9.0.4 and later
Symantec AntiVirus Corporate Edition 10.x
Symantec Client Security 3.x
Norton AntiVirus 2005 and later
Norton Internet Security 2005 and later
Norton System Works 2005 and later

Details

Boon Seng Lim notified Symantec of a vulnerability in SAVRT.SYS which could allow a malicious user to use the output buffer of DeviceIOControl()to overwrite kernel addresses because the address space of the output buffer was not properly validated. A successful exploit could potentially allow a local attacker to execute code of their choice with elevated privileges, or to crash the system.

Symantec Response

Symantec engineers verified that this issue exists in the affted products list above, and have released updates for currently supported affected products.

Symantec is not aware of any customers impacted by this issue, or of any attempts to exploit the issue.

Any future updates to this adivsory will be posted in the Symantec Advisory:
http://www.symantec.com/avcenter/security/Content/2006.10.23.html

Credit
Symantec would like to thank Boon Seng Lim for reporting this issue, and working with us on the resolution.

CVE
This issue is a candidate for inclusion in the Common Vulnerabilities and Exposures (CVE) list (http://cve.mitre.org), which standardizes names for security problems. The CVE initiative has assigned CVE-2006-3455 to this issue

Related

symantec 1
cve 1
symantec
symantec
Symantec Device Driver Elevation of Privilege
2006-10-23 08:00:00
cve
cve
CVE-2006-3455
2006-10-23 20:07:00
JSON
Related for SECURITYVULNS:DOC:14826
symantec1cve1