Vulnerabilities > CVE-2006-3725 - Denial-Of-Service vulnerability in Symantec Norton Personal Firewall 20069.1.0.33

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

local

low complexity

symantec

NVD

Published: 2006-07-21

Updated: 2018-10-17

Summary

Norton Personal Firewall 2006 9.1.0.33 allows local users to cause a denial of service (crash) via certain RegSaveKey, RegRestoreKey and RegDeleteKey operations on the (1) HKLM\SYSTEM\CurrentControlSet\Services\SNDSrvc and (2) HKLM\SYSTEM\CurrentControlSet\Services\SymEvent registry keys.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Norton Personal Firewall 2006_9.1.0.33	1

References

http://securityreason.com/securityalert/1241
http://www.matousec.com/info/advisories/Norton-Insufficient-protection-of-Norton-service-registry-keys.php
http://www.securityfocus.com/archive/1/440110/100/0/threaded
http://www.securityfocus.com/bid/18995
https://exchange.xforce.ibmcloud.com/vulnerabilities/27764