Vulnerabilities > CVE-2007-1495 - Local Denial of Service vulnerability in Symantec Norton Personal Firewall 20069.1.1.7

047910
CVSS 4.9 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
local
low complexity
symantec
NVD
Published: 2007-03-16
Updated: 2018-10-16

Summary

The \Device\SymEvent driver in Symantec Norton Personal Firewall 2006 9.1.1.7, and possibly other products using symevent.sys 12.0.0.20, allows local users to cause a denial of service (system crash) via invalid data, as demonstrated by calling DeviceIoControl to send the data, a reintroduction of CVE-2006-4855.

Vulnerable Configurations

Part Description Count
Application
Symantec
1

References