4.3

CVE-2006-3455

EPSS 0.08%
Published 23.10.2006 20:07:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

The SAVRT.SYS device driver, as used in Symantec AntiVirus Corporate Edition 8.1 and 9.0.x up to 9.0.3, and Symantec Client Security 1.1 and 2.0.x up to 2.0.3, allows local users to execute arbitrary code via a modified address for the output buffer argument to the DeviceIOControl function.

Affected products Warnungen 0 Metrics 2 CWE 0 References 11

Data is provided by the National Vulnerability Database (NVD)

Symantec ≫ Client Security Version1.1

Symantec ≫ Client Security Version1.1.1

Symantec ≫ Client Security Version1.1.1_build_393

Symantec ≫ Client Security Version1.1.1_mr1_build_8.1.1.314a

Symantec ≫ Client Security Version1.1.1_mr2_build_8.1.1.319

Symantec ≫ Client Security Version1.1.1_mr3_build_8.1.1.323

Symantec ≫ Client Security Version1.1.1_mr4_build_8.1.1.329

Symantec ≫ Client Security Version1.1.1_mr5_build_8.1.1.336

Symantec ≫ Client Security Version1.1.1_mr6_b8.1.1.266

Symantec ≫ Client Security Version1.1_stm_b8.1.0.825a

Symantec ≫ Client Security Version2.0

Symantec ≫ Client Security Version2.0.1

Symantec ≫ Client Security Version2.0.1_build_9.0.1.1000 Updatemr1

Symantec ≫ Client Security Version2.0.2

Symantec ≫ Client Security Version2.0.2_build_9.0.2.1000 Updatemr2

Symantec ≫ Client Security Version2.0.3

Symantec ≫ Client Security Version2.0.3_build_9.0.3.1000 Updatemr3

Symantec ≫ Client Security Version2.0_scf_7.1

Symantec ≫ Client Security Version2.0_stm_build_9.0.0.338

Symantec ≫ Norton Antivirus Version8.1 Editioncorporate

Symantec ≫ Norton Antivirus Version8.1.0.825a Editioncorporate

Symantec ≫ Norton Antivirus Version8.1.1 Editioncorporate

Symantec ≫ Norton Antivirus Version8.1.1.319 Editioncorporate

Symantec ≫ Norton Antivirus Version8.1.1.323 Editioncorporate

Symantec ≫ Norton Antivirus Version8.1.1.329 Editioncorporate

Symantec ≫ Norton Antivirus Version8.1.1.366 Editioncorporate

Symantec ≫ Norton Antivirus Version8.1.1.377 Editioncorporate

Symantec ≫ Norton Antivirus Version8.1.1_build8.1.1.314a Editioncorporate

Symantec ≫ Norton Antivirus Version8.1.1_build393 Editioncorporate

Symantec ≫ Norton Antivirus Version8.01.434 Editioncorporate

Symantec ≫ Norton Antivirus Version8.01.437 Editioncorporate

Symantec ≫ Norton Antivirus Version8.01.446 Editioncorporate

Symantec ≫ Norton Antivirus Version8.01.457 Editioncorporate

Symantec ≫ Norton Antivirus Version8.01.460 Editioncorporate

Symantec ≫ Norton Antivirus Version8.01.464 Editioncorporate

Symantec ≫ Norton Antivirus Version8.01.471 Editioncorporate

Symantec ≫ Norton Antivirus Version9.0.1 Editioncorporate

Symantec ≫ Norton Antivirus Version9.0.1.1.1000 Editioncorporate

Symantec ≫ Norton Antivirus Version9.0.1.1000 Editioncorporate

Symantec ≫ Norton Antivirus Version9.0.2 Editioncorporate

Symantec ≫ Norton Antivirus Version9.0.2.1000 Editioncorporate

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.08%	0.233

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	3.1	6.4	AV:L/AC:L/Au:S/C:P/I:P/A:P

http://secunia.com/advisories/22536

http://securitytracker.com/id?1017108

http://securitytracker.com/id?1017109

http://www.securityfocus.com/archive/1/449524/100/0/threaded

http://www.securityfocus.com/bid/20684

http://www.symantec.com/avcenter/security/Content/2006.10.23.html

Patch

http://www.vupen.com/english/advisories/2006/4157

https://exchange.xforce.ibmcloud.com/vulnerabilities/29762

https://nvd.nist.gov/vuln/detail/CVE-2006-3455

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-3455

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-3455

EUVD