CVE-2007-1495 - The \Device\SymEvent driver in Symantec Norton Personal Firewall 2006 9.1.1.7, and possibly other pr

CVE-2007-1495

Summary

The \Device\SymEvent driver in Symantec Norton Personal Firewall 2006 9.1.1.7, and possibly other products using symevent.sys 12.0.0.20, allows local users to cause a denial of service (system crash) via invalid data, as demonstrated by calling DeviceIoControl to send the data, a reintroduction of CVE-2006-4855.

References

http://securityreason.com/securityalert/2445
http://www.securityfocus.com/archive/1/462792/100/0/threaded
http://www.securityfocus.com/bid/22961

Vulnerable Configurations

cpe:2.3:a:symantec:norton_personal_firewall:2006_9.1.1.7:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_personal_firewall:2006_9.1.1.7:*:*:*:*:*:*:*

CVSS

Base:	4.9 (as of 16-10-2018 - 16:38)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:C

refmap via4

bid	22961
bugtraq	20070314 SymEvent Driver Local Access System Denial of Service
sreason	2445

Last major update

16-10-2018 - 16:38

Published

16-03-2007 - 22:19

Last modified

16-10-2018 - 16:38