Vulnerabilities > CVE-2007-3673 - Local Privilege Escalation vulnerability in Symantec Device Driver SYMTDI.SYS

CVSS 6.9 - MEDIUM

Attack vector

LOCAL

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

symantec

NVD

Published: 2007-07-15

Updated: 2017-07-29

Summary

Symantec symtdi.sys before 7.0.0, as distributed in Symantec AntiVirus Corporate Edition 9 through 10.1 and Client Security 2.0 through 3.1, Norton AntiSpam 2005, and Norton AntiVirus, Internet Security, Personal Firewall, and System Works 2005 and 2006; allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in an IOCTL 0x83022323 request to \\symTDI\, which results in memory overwrite.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Client Security 2.0 Symantec Client Security 3.0 Symantec Client Security 3.1 Symantec Norton Antispam 2005 Symantec Norton Antivirus 9.0 Symantec Norton Antivirus 9.0.0.338 Symantec Norton Antivirus 9.0.1 Symantec Norton Antivirus 9.0.1.1.1000 Symantec Norton Antivirus 9.0.1.1000 Symantec Norton Antivirus 9.0.2 Symantec Norton Antivirus 9.0.2.1000 Symantec Norton Antivirus 9.0.3.1000 Symantec Norton Antivirus 9.0.4 Symantec Norton Antivirus 9.0.5 Symantec Norton Antivirus 9.0.5.1100 Symantec Norton Antivirus 10.0 Symantec Norton Antivirus 10.1 Symantec Norton Antivirus 2005 Symantec Norton Antivirus 2006 Symantec Norton Internet Security 2005 Symantec Norton Internet Security 2006 Symantec Norton Personal Firewall 2005 Symantec Norton Personal Firewall 2006 Symantec Norton System Works 2005 Symantec Norton System Works 2006	25

Summary

Vulnerable Configurations

References