NVD

Id
55823  
Name
CVE-2007-3673  
Description
Symantec symtdi.sys before 7.0.0, as distributed in Symantec AntiVirus Corporate Edition 9 through 10.1 and Client Security 2.0 through 3.1, Norton AntiSpam 2005, and Norton AntiVirus, Internet Security, Personal Firewall, and System Works 2005 and 2006; allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in an IOCTL 0x83022323 request to \symTDI, which results in memory overwrite.  
Reject
 
CVSS Version
2  
CVSS Score
6.9  
Severity
Medium  
CVSS Base Score
6.9  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.4  
CVSS Vector
(AV:L/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-07-15  
Modified Date
2013-07-18  
Seq
2007-3673  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
283818 55823 CVE-2007-3673 20070711 Symantec AntiVirus symtdi.sys Local Privilege Escalation Vulnerability  View
283819 55823 CVE-2007-3673 http://securityresponse.symantec.com/avcenter/security/Content/2007.07.11d.html  View
283820 55823 CVE-2007-3673 1018372  View
283821 55823 CVE-2007-3673 22351  View
283822 55823 CVE-2007-3673 ADV-2007-2507  View
283823 55823 CVE-2007-3673 symantec-multi-symtdi-privilege-escalation(35347)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
57153 JVNDB-2007-005845 Symantec AntiVirus Corporate Edition などに同梱されている Symantec symtdi.sys における権限を取得される脆弱性 Symantec AntiVirus Corporate Edition および Client Security、Norton AntiSpam、および Norton AntiVirus、Internet Security、Personal Firewall、および System Works に同梱されている Symantec symtdi.sys には、権限を取得される脆弱性が存在します。 CVE-2007-3673 27028 CVE-2007-3673 55823 6.9 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005845.html 2007-07-11 2012-12-20 View