CVE-2007-1793

Exploit

EPSS 0.26%
Published 02.04.2007 22:19:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

SPBBCDrv.sys in Symantec Norton Personal Firewall 2006 9.1.0.33 and 9.1.1.7 does not validate certain arguments before being passed to hooked SSDT function handlers, which allows local users to cause a denial of service (crash) or possibly execute arbitrary code via crafted arguments to the (1) NtCreateMutant and (2) NtOpenEvent functions.  NOTE: it was later reported that Norton Internet Security 2008 15.0.0.60, and possibly other versions back to 2006, are also affected.

Affected products Warnungen 0 Metrics 2 CWE 1 References 20

Data is provided by the National Vulnerability Database (NVD)

Symantec ≫ Antivirus Version10.0 Editioncorporate

Symantec ≫ Antivirus Version10.0.1 Editioncorporate

Symantec ≫ Antivirus Version10.0.1.1 Editioncorporate

Symantec ≫ Antivirus Version10.0.2 Editioncorporate

Symantec ≫ Antivirus Version10.0.2.1 Editioncorporate

Symantec ≫ Antivirus Version10.0.2.2 Editioncorporate

Symantec ≫ Antivirus Version10.0.3 Editioncorporate

Symantec ≫ Antivirus Version10.0.4 Editioncorporate

Symantec ≫ Antivirus Version10.0.5 Editioncorporate

Symantec ≫ Antivirus Version10.0.6 Editioncorporate

Symantec ≫ Antivirus Version10.0.7 Editioncorporate

Symantec ≫ Antivirus Version10.0.8 Editioncorporate

Symantec ≫ Antivirus Version10.0.9 Editioncorporate

Symantec ≫ Client Security Version3.0

Symantec ≫ Client Security Version3.0.0.359

Symantec ≫ Client Security Version3.0.1.1000

Symantec ≫ Client Security Version3.0.1.1001

Symantec ≫ Client Security Version3.0.1.1007

Symantec ≫ Client Security Version3.0.1.1008

Symantec ≫ Client Security Version3.0.1.1009

Symantec ≫ Client Security Version3.0.2

Symantec ≫ Client Security Version3.0.2.2000

Symantec ≫ Client Security Version3.0.2.2001

Symantec ≫ Client Security Version3.0.2.2002

Symantec ≫ Client Security Version3.0.2.2010

Symantec ≫ Client Security Version3.0.2.2011

Symantec ≫ Client Security Version3.0.2.2020

Symantec ≫ Client Security Version3.0.2.2021

Symantec ≫ Client Security Version3.1

Symantec ≫ Client Security Version3.1.0.396

Symantec ≫ Client Security Version3.1.0.401

Symantec ≫ Client Security Version3.1.394

Symantec ≫ Client Security Version3.1.396

Symantec ≫ Client Security Version3.1.400

Symantec ≫ Client Security Version3.1.401

Symantec ≫ Norton 360 Version1.0

Symantec ≫ Norton Antispam Version2004

Symantec ≫ Norton Antispam Version2005

Symantec ≫ Norton Antivirus Version2004

Symantec ≫ Norton Antivirus Version2005

Symantec ≫ Norton Antivirus Version2006

Symantec ≫ Norton Antivirus Version2007

Symantec ≫ Norton Antivirus Version2008

Symantec ≫ Norton Internet Security Version2004

Symantec ≫ Norton Internet Security Version2005

Symantec ≫ Norton Internet Security Version2006

Symantec ≫ Norton Internet Security Version2007

Symantec ≫ Norton Internet Security Version2008

Symantec ≫ Norton Personal Firewall Version2004

Symantec ≫ Norton Personal Firewall Version2005

Symantec ≫ Norton Personal Firewall Version2006

Symantec ≫ Norton Personal Firewall Version2006_9.1.0.33

Symantec ≫ Norton Personal Firewall Version2006_9.1.1.7

Symantec ≫ Norton System Works Version2004

Symantec ≫ Norton System Works Version2005

Symantec ≫ Norton System Works Version2006

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.26%	0.465

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.9	3.9	6.9	AV:L/AC:L/Au:N/C:N/I:N/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.matousec.com/info/advisories/plague-in-security-software-drivers.php

http://www.matousec.com/projects/windows-personal-firewall-analysis/plague-in-security-software-drivers.php

http://www.securityfocus.com/archive/1/479830/100/0/threaded

http://osvdb.org/34692

http://secunia.com/advisories/24677

Vendor Advisory

http://securityresponse.symantec.com/avcenter/security/Content/2008.12.12.html

http://www.matousec.com/info/advisories/Norton-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.php

Vendor Advisory

http://www.securityfocus.com/archive/1/464456/100/0/threaded

http://www.securityfocus.com/bid/23241

Exploit