Symantec Norton SymEvent驱动拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1111041 漏洞类型 资源管理错误
发布时间 2006-09-15 更新时间 2006-09-28
CVE编号 CVE-2006-4855 CNNVD-ID CNNVD-200609-347
漏洞平台 Windows CVSS评分 4.9
|漏洞来源
https://www.exploit-db.com/exploits/28588
https://cxsecurity.com/issue/WLB-2006090119
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200609-347
|漏洞详情
SymantecNorton个人防火墙是非常流行的防火墙软件。SymantecNorton个人防火墙的实现上存在漏洞,本地攻击者可能利用此漏洞对系统执行拒绝服务攻击。Norton没有充分地保护\Device\SymEvent驱动,也没有验证其输入缓冲区,允许Everyone向这个驱动中写入数据,可能导致驱动执行无效的内存操作以及整个操作系统崩溃。
|漏洞EXP
source: http://www.securityfocus.com/bid/20051/info

Multiple Symantec products are prone to a local denial-of-service vulnerability. This issue occurs when attackers send malformed data to the 'SymEvent' driver.

A local authenticated attacker may exploit this issue to crash affected computers, denying service to legitimate users.

Please see the vulnerable systems section for details regarding affected Symantec products.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/28588.zip
|参考资料

来源:XF
名称:symantec-firewall-symevent-dos(28960)
链接:http://xforce.iss.net/xforce/xfdb/28960
来源:BID
名称:20051
链接:http://www.securityfocus.com/bid/20051
来源:BUGTRAQ
名称:20060915SymantecNortonInsufficientvalidationof'SymEvent'driverinputbuffer
链接:http://www.securityfocus.com/archive/1/archive/1/446111/100/0/threaded
来源:MISC
链接:http://www.matousec.com/info/advisories/Norton-Insufficient-validation-of-SymEvent-driver-input-buffer.php
来源:VUPEN
名称:ADV-2006-3636
链接:http://www.frsirt.com/english/advisories/2006/3636
来源:SECTRACK
名称:1016898
链接:http://securitytracker.com/id?1016898
来源:SECTRACK
名称:1016897
链接:http://securitytracker.com/id?1016897
来源:SECTRACK
名称:1016896
链接:http://securitytracker.com/id?1016896
来源:SECTRACK
名称:1016895
链接:http://securitytracker.com/id?1016895
来源:SECTRACK
名称:1016894
链接:http://securitytracker.com/id?1016894
来源:SECTRACK
名称:1016893
链接:http://securitytracker.com/id?1016893
来源:SECTRACK
名称:1016892
链接:http://securitytracker.com/id?1016892
来源:SECTRACK
名称:1016889
链接:http://securitytr