CVE-2007-3673
published 2007-07-15CVE-2007-3673: Symantec symtdi.sys before 7.0.0, as distributed in Symantec AntiVirus Corporate Edition 9 through 10.1 and Client Security 2.0 through 3.1, Norton AntiSpam…
medium6.9CVSS 3.1
AVLACMAuNCCICAC
EXPLOIT
Symantec symtdi.sys before 7.0.0, as distributed in Symantec AntiVirus Corporate Edition 9 through 10.1 and Client Security 2.0 through 3.1, Norton AntiSpam 2005, and Norton AntiVirus, Internet Security, Personal Firewall, and System Works 2005 and 2006; allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in an IOCTL 0x83022323 request to \\symTDI\, which results in memory overwrite.
Affected
25 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| symantec | client_security | — | — |
| symantec | client_security | — | — |
| symantec | client_security | — | — |
| symantec | norton_antispam | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_antivirus | — | — |
| symantec | norton_internet_security | — | — |
| symantec | norton_internet_security | — | — |
| symantec | norton_personal_firewall | — | — |
| symantec | norton_personal_firewall | — | — |
| symantec | norton_system_works | — | — |
| symantec | norton_system_works | — | — |