PT-2007-2870 · Symantec · Symantec Antivirus Corporate Edition+2
Published
2007-03-16
·
Updated
2018-10-16
·
CVE-2007-1476
CVSS v2.0
1.9
Low
| Vector | AV:L/AC:M/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Symantec Norton Personal Firewall versions 9.1.1.7 and earlier
Symantec Internet Security versions 2005 and 2006
Symantec AntiVirus Corporate Edition versions 3.0.x through 10.1.x
Description
The issue allows local users to cause a denial of service, resulting in a system crash, by sending crafted data to the SymTDI device driver's
Device file. This triggers invalid memory access.Recommendations
For Symantec Norton Personal Firewall versions 9.1.1.7 and earlier, update to a version later than 9.1.1.7.
For Symantec Internet Security versions 2005 and 2006, update to a version later than 2006.
For Symantec AntiVirus Corporate Edition versions 3.0.x through 10.1.x, update to a version later than 10.1.x.
Exploit
Fix
DoS
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Symantec Antivirus Corporate Edition
Symantec Internet Security
Symantec Norton Personal Firewall