1. CVE-Search
  2. CVE-2007-3673
ID CVE-2007-3673
Summary Symantec symtdi.sys before 7.0.0, as distributed in Symantec AntiVirus Corporate Edition 9 through 10.1 and Client Security 2.0 through 3.1, Norton AntiSpam 2005, and Norton AntiVirus, Internet Security, Personal Firewall, and System Works 2005 and 2006; allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in an IOCTL 0x83022323 request to \\symTDI\, which results in memory overwrite.
References
Vulnerable Configurations
  • cpe:2.3:a:symantec:client_security:2.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:client_security:2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:client_security:3.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:client_security:3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:client_security:3.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:client_security:3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antispam:2005:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antispam:2005:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:9.0:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:9.0:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:9.0.0.338:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:9.0.0.338:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:9.0.1:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:9.0.1:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:9.0.1.1.1000:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:9.0.1.1.1000:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:9.0.1.1000:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:9.0.1.1000:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:9.0.2:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:9.0.2:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:9.0.2.1000:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:9.0.2.1000:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:9.0.3.1000:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:9.0.3.1000:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:9.0.4:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:9.0.4:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:9.0.5:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:9.0.5:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:9.0.5.1100:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:9.0.5.1100:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:10.0:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:10.0:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:10.1:*:corporate:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:10.1:*:corporate:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:2005:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:2005:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_antivirus:2006:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:norton_antivirus:2006:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_internet_security:2005:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:norton_internet_security:2005:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_internet_security:2006:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:norton_internet_security:2006:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_personal_firewall:2005:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:norton_personal_firewall:2005:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_personal_firewall:2006:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:norton_personal_firewall:2006:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_system_works:2005:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:norton_system_works:2005:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:norton_system_works:2006:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:norton_system_works:2006:*:*:*:*:*:*:*
CVSS
Base: 6.9 (as of 29-07-2017 - 01:32)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:L/AC:M/Au:N/C:C/I:C/A:C
refmap via4
bid 22351
confirm http://securityresponse.symantec.com/avcenter/security/Content/2007.07.11d.html
idefense 20070711 Symantec AntiVirus symtdi.sys Local Privilege Escalation Vulnerability
osvdb 36117
sectrack 1018372
secunia 26042
vupen ADV-2007-2507
xf symantec-multi-symtdi-privilege-escalation(35347)
Last major update 29-07-2017 - 01:32
Published 15-07-2007 - 21:30
Last modified 29-07-2017 - 01:32
Back to Top