CVE-2007-3673

Description

Symantec symtdi.sys before 7.0.0, as distributed in Symantec AntiVirus Corporate Edition 9 through 10.1 and Client Security 2.0 through 3.1, Norton AntiSpam 2005, and Norton AntiVirus, Internet Security, Personal Firewall, and System Works 2005 and 2006; allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in an IOCTL 0x83022323 request to \\symTDI\, which results in memory overwrite.

Affected products

Symantec / client_security2.0 – 2.0
Symantec / client_security3.0 – 3.0
Symantec / client_security3.1 – 3.1
Symantec / norton_antispam2005 – 2005
Symantec / norton_antivirus9.0 – 9.0
Symantec / norton_antivirus9.0.0.338 – 9.0.0.338
Symantec / norton_antivirus9.0.1 – 9.0.1
Symantec / norton_antivirus9.0.1.1.1000 – 9.0.1.1.1000
Symantec / norton_antivirus9.0.1.1000 – 9.0.1.1000
Symantec / norton_antivirus9.0.2 – 9.0.2
Symantec / norton_antivirus9.0.2.1000 – 9.0.2.1000
Symantec / norton_antivirus9.0.3.1000 – 9.0.3.1000
Symantec / norton_antivirus9.0.4 – 9.0.4
Symantec / norton_antivirus9.0.5 – 9.0.5
Symantec / norton_antivirus9.0.5.1100 – 9.0.5.1100
Symantec / norton_antivirus10.0 – 10.0
Symantec / norton_antivirus10.1 – 10.1
Symantec / norton_antivirus2005 – 2005
Symantec / norton_antivirus2006 – 2006
Symantec / norton_internet_security2005 – 2005
Symantec / norton_internet_security2006 – 2006
Symantec / norton_personal_firewall2005 – 2005
Symantec / norton_personal_firewall2006 – 2006
Symantec / norton_system_works2005 – 2005
Symantec / norton_system_works2006 – 2006

Description

Affected products

References