Lucene search

K
cve[email protected]CVE-2006-4855
HistorySep 19, 2006 - 6:07 p.m.

CVE-2006-4855

2006-09-1918:07:00
CWE-399
web.nvd.nist.gov
27
symantec
norton personal firewall
denial of service
cve-2006-4855
nvd

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.1

Confidence

High

EPSS

0

Percentile

0.4%

The \Device\SymEvent driver in Symantec Norton Personal Firewall 2006 9.1.0.33, and other versions of Norton Personal Firewall, Internet Security, AntiVirus, SystemWorks, Symantec Client Security SCS 1.x, 2.x, 3.0, and 3.1, Symantec AntiVirus Corporate Edition SAVCE 8.x, 9.x, 10.0, and 10.1, Symantec pcAnywhere 11.5 only, and Symantec Host, allows local users to cause a denial of service (system crash) via invalid data, as demonstrated by calling DeviceIoControl to send the data.

Affected configurations

NVD
Node
symantecclient_securityMatch1.0
OR
symantecclient_securityMatch1.0.0_b8.01.9378
OR
symantecclient_securityMatch1.0.1
OR
symantecclient_securityMatch1.0.1_build_8.01.425amr1
OR
symantecclient_securityMatch1.0.1_build_8.01.429cmr2
OR
symantecclient_securityMatch1.0.1_build_8.01.434mr3
OR
symantecclient_securityMatch1.0.1_build_8.01.437
OR
symantecclient_securityMatch1.0.1_build_8.01.446mr4
OR
symantecclient_securityMatch1.0.1_build_8.01.457mr5
OR
symantecclient_securityMatch1.0.1_build_8.01.460mr6
OR
symantecclient_securityMatch1.0.1_build_8.01.464mr7
OR
symantecclient_securityMatch1.0.1_build_8.01.471mr8
OR
symantecclient_securityMatch1.0.1_build_8.01.501mr9
OR
symantecclient_securityMatch1.0_build_8.01.9374
OR
symantecclient_securityMatch1.1
OR
symantecclient_securityMatch1.1.1
OR
symantecclient_securityMatch1.1.1_build_393
OR
symantecclient_securityMatch1.1.1_mr1_build_8.1.1.314a
OR
symantecclient_securityMatch1.1.1_mr2_build_8.1.1.319
OR
symantecclient_securityMatch1.1.1_mr3_build_8.1.1.323
OR
symantecclient_securityMatch1.1.1_mr4_build_8.1.1.329
OR
symantecclient_securityMatch1.1.1_mr5_build_8.1.1.336
OR
symantecclient_securityMatch1.1.1_mr6_b8.1.1.266
OR
symantecclient_securityMatch1.1_stm_b8.1.0.825a
OR
symantecclient_securityMatch2.0
OR
symantecclient_securityMatch2.0.1_build_9.0.1.1000mr1
OR
symantecclient_securityMatch2.0.2_build_9.0.2.1000mr2
OR
symantecclient_securityMatch2.0.3_build_9.0.3.1000mr3
OR
symantecclient_securityMatch2.0.5_build_1100
OR
symantecclient_securityMatch2.0_scf_7.1
OR
symantecclient_securityMatch2.0_stm_build_9.0.0.338
OR
symantecclient_securityMatch3.0
OR
symantecclient_securityMatch3.1
OR
symantechost_ids
OR
symantecnorton_antivirusMatch2.1ms_exchange
OR
symantecnorton_antivirusMatch8.0corporate
OR
symantecnorton_antivirusMatch8.0.1corporate
OR
symantecnorton_antivirusMatch8.0.1.425acorporate
OR
symantecnorton_antivirusMatch8.0.1.425ccorporate
OR
symantecnorton_antivirusMatch8.0.1.501corporate
OR
symantecnorton_antivirusMatch8.0.1.9374corporate
OR
symantecnorton_antivirusMatch8.0.1.9378corporate
OR
symantecnorton_antivirusMatch8.1corporate
OR
symantecnorton_antivirusMatch8.1.0.825acorporate
OR
symantecnorton_antivirusMatch8.1.1corporate
OR
symantecnorton_antivirusMatch8.1.1.319corporate
OR
symantecnorton_antivirusMatch8.1.1.323corporate
OR
symantecnorton_antivirusMatch8.1.1.329corporate
OR
symantecnorton_antivirusMatch8.1.1.366corporate
OR
symantecnorton_antivirusMatch8.1.1.377corporate
OR
symantecnorton_antivirusMatch8.1.1_build8.1.1.314acorporate
OR
symantecnorton_antivirusMatch8.1.1_build393corporate
OR
symantecnorton_antivirusMatch8.01.434corporate
OR
symantecnorton_antivirusMatch8.01.437corporate
OR
symantecnorton_antivirusMatch8.01.446corporate
OR
symantecnorton_antivirusMatch8.01.457corporate
OR
symantecnorton_antivirusMatch8.01.460corporate
OR
symantecnorton_antivirusMatch8.01.464corporate
OR
symantecnorton_antivirusMatch8.01.471corporate
OR
symantecnorton_antivirusMatch9.0corporate
OR
symantecnorton_antivirusMatch9.0.0.338corporate
OR
symantecnorton_antivirusMatch9.0.1.1.1000corporate
OR
symantecnorton_antivirusMatch9.0.2.1000corporate
OR
symantecnorton_antivirusMatch9.0.3.1000corporate
OR
symantecnorton_antivirusMatch9.0.4corporate
OR
symantecnorton_antivirusMatch9.0.5corporate
OR
symantecnorton_antivirusMatch9.0.5.1100corporate
OR
symantecnorton_antivirusMatch10.0corporate
OR
symantecnorton_antivirusMatch10.0.2.2000corporate
OR
symantecnorton_antivirusMatch10.0.2.2001corporate
OR
symantecnorton_antivirusMatch10.0.2.2002corporate
OR
symantecnorton_antivirusMatch10.0.2.2010corporate
OR
symantecnorton_antivirusMatch10.0.2.2011corporate
OR
symantecnorton_antivirusMatch10.0.2.2020corporate
OR
symantecnorton_antivirusMatch10.0.2.2021corporate
OR
symantecnorton_antivirusMatch10.1corporate
OR
symantecnorton_antivirusMatch2003
OR
symantecnorton_antivirusMatch2003professional
OR
symantecnorton_antivirusMatch2004professional
OR
symantecnorton_antivirusMatch2005
OR
symantecnorton_antivirusMatch2006
OR
symantecnorton_antivirusMatch2007
OR
symantecnorton_internet_securityMatch2003
OR
symantecnorton_internet_securityMatch2003professional
OR
symantecnorton_internet_securityMatch2004
OR
symantecnorton_internet_securityMatch2004professional
OR
symantecnorton_internet_securityMatch2005
OR
symantecnorton_internet_securityMatch2005professional
OR
symantecnorton_internet_securityMatch2006professional
OR
symantecnorton_internet_securityMatch2007
OR
symantecnorton_personal_firewallMatch2003
OR
symantecnorton_personal_firewallMatch2004
OR
symantecnorton_personal_firewallMatch2005
OR
symantecnorton_personal_firewallMatch2006
OR
symantecnorton_system_worksMatch2003_professional_edition
OR
symantecnorton_system_worksMatch2004
OR
symantecnorton_system_worksMatch2004_professional_edition
OR
symantecnorton_system_worksMatch2005
OR
symantecnorton_system_worksMatch2005_premier
OR
symantecnorton_system_worksMatch2006
OR
symantecpcanywhereMatch11.5
VendorProductVersionCPE
symantecclient_security1.0.1cpe:/a:symantec:client_security:1.0.1:::
symantecnorton_antivirus8.0.1.9374cpe:/a:symantec:norton_antivirus:8.0.1.9374:::
symantecclient_security1.0.1+build+8.01.437cpe:/a:symantec:client_security:1.0.1+build+8.01.437:::
symantecnorton_system_works2005cpe:/a:symantec:norton_system_works:2005:::
symantecnorton_antivirus10.0.2.2021cpe:/a:symantec:norton_antivirus:10.0.2.2021:::
symantecnorton_antivirus2005cpe:/a:symantec:norton_antivirus:2005:::
symantecclient_security2.0cpe:/a:symantec:client_security:2.0:::
symantecnorton_antivirus9.0.2.1000cpe:/a:symantec:norton_antivirus:9.0.2.1000:::
symantecclient_security2.0+stm+build+9.0.0.338cpe:/a:symantec:client_security:2.0+stm+build+9.0.0.338:::
symantecnorton_antivirus10.0.2.2010cpe:/a:symantec:norton_antivirus:10.0.2.2010:::
Rows per page:
1-10 of 971

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.1

Confidence

High

EPSS

0

Percentile

0.4%

Related for CVE-2006-4855