4.6
CVE-2003-1310
- EPSS 1.17%
- Veröffentlicht 31.12.2003 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:03:54
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local users to gain privileges by overwriting memory locations via certain control codes (aka "Device Driver Attack").
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Symantec ≫ Norton Antivirus Version2002
Symantec ≫ Norton Antivirus Version2003
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.17% | 0.634 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
http://sec-labs.hack.pl/papers/win32ddc.php
http://www.osvdb.org/4362
https://exchange.xforce.ibmcloud.com/vulnerabilities/12824
http://secunia.com/advisories/9460
http://www.securityfocus.com/bid/8329