Published: 31/12/2003 Updated: 29/07/2017

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 465

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local users to gain privileges by overwriting memory locations via certain control codes (aka "Device Driver Attack").

Vulnerable Product	Search on Vulmon	Subscribe to Product
symantec norton antivirus 2003
symantec norton antivirus 2002

source: wwwsecurityfocuscom/bid/8329/info It has been reported that a memory corruption vulnerability affects the Symantec Norton AntiVirus Device Driver According to the report, one of the device control operation handlers attempts to write data to an address offset from a pointer parameter passed to DeviceIoControl() There is no valid ...

NVD-CWE-Other http://sec-labs.hack.pl/papers/win32ddc.php http://www.securityfocus.com/bid/8329 http://www.osvdb.org/4362 http://secunia.com/advisories/9460 https://exchange.xforce.ibmcloud.com/vulnerabilities/12824 https://nvd.nist.gov https://www.exploit-db.com/exploits/22980/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-1310

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect