CVE-2006-3725

Name of the Vulnerable Software and Affected Versions Norton Personal Firewall 2006 version 9.1.0.33

Description The issue allows local users to cause a denial of service, resulting in a crash, by performing certain operations on specific registry keys. These operations include RegSaveKey, RegRestoreKey, and RegDeleteKey on the HKLMSYSTEMCurrentControlSetServicesSNDSrvc and HKLMSYSTEMCurrentControlSetServicesSymEvent registry keys.

Recommendations For Norton Personal Firewall 2006 version 9.1.0.33, consider restricting access to the HKLMSYSTEMCurrentControlSetServicesSNDSrvc and HKLMSYSTEMCurrentControlSetServicesSymEvent registry keys to minimize the risk of exploitation. Avoid using the RegSaveKey, RegRestoreKey, and RegDeleteKey operations on these keys until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.