|
|
CVE Reference: CVE-2007-1793 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-1793 |
|
|
Description: SPBBCDrv.sys in Symantec Norton Personal Firewall 2006 9.1.0.33 and 9.1.1.7 does not validate certain arguments before being passed to hooked SSDT function handlers, which allows local users to cause a denial of service (crash) or possibly execute arbitrary code via crafted arguments to the (1) NtCreateMutant and (2) NtOpenEvent functions. NOTE: it was later reported that Norton Internet Security 2008 15.0.0.60, and possibly other versions back to 2006, are also affected. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/33352 ST 1017837 1017838 1021386 1021387 1021388 1021389 SAID Secunia Advisory: SA24677 OSVDB 34692 MISC http://www.matousec.com/projects/windows-personal-firewall-analysis/plague-in-security-software-drivers.php http://www.matousec.com/info/advisories/Norton-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.php http://www.matousec.com/info/advisories/plague-in-security-software-drivers.php CONFIRM http://securityresponse.symantec.com/avcenter/security/Content/2008.12.12.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/479830/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/464456/100/0/threaded BID 23241 |
|
| Return to the previous page. |
