Vulnerability Bulletins |
Aumento de privilegios en Symantec Norton AntiVirus |
|
Vulnerability classification |
|
| Property | Value |
| Confidence level | Oficial |
| Impact | Aumento de privilegios |
| Dificulty | Principiante |
| Required attacker level | Acceso remoto sin cuenta a un servicio exotico |
System information |
|
| Property | Value |
| Affected manufacturer | Comercial Software |
| Affected software |
Norton AntiVirus / Windows 32/64 Norton Internet Security / Windows 32/64 Norton System Works / Windows 32/64 Symantec AntiVirus Corporate Edition / Windows 32/64 Symantec AntiVirus for Blue Coat Security / Windows 32/64 Symantec AntiVirus for CacheFlow Security Gateway / Windows 32/64 Symantec AntiVirus for Clearswift MIME Sweeper / Windows 32/64 Symantec AntiVirus for Inktomi Traffic Edge / Windows 32/64 Symantec AntiVirus for Microsoft ISA Server / Windows 32/64 Symantec AntiVirus for NetApp Filer/NetCache / Windows 32/64 Symantec BrightMail AntiSpam / Windows 32/64 Symantec Client Security / Windows 32/64 Symantec Mail Security for Domino / Windows 32/64 Symantec Mail Security for Exchange / Windows 32/64 Symantec Mail Security for SMTP / Windows 32/64 Symantec Scan Engine / Windows 32/64 Symantec Web Security for Windows / Windows 32/64 |
Description |
|
|
Se ha descubierto una vulnerabilidad en varias versiones Symantec antivirus. La vulnerabilidad reside en un error en los drivers de dispositivo NAVENG.SYS y NAVEX15.SYS versión anterior a 20061.3.0.12. Un atacante local podría elevar sus privilegios mediante la sobrescritura de direcciones críticas del sistema mediante un IRP especialmente diseñado a las funciones IOCTL 0x222AD3, 0x222AD7, y 0x222ADB. |
|
Solution |
|
|
Actualización de software Symantec Norton AntiVirus / Windows 32/64 Norton Internet Security / Windows 32/64 Norton System Works / Windows 32/64 Symantec AntiVirus Corporate Edition / Windows 32/64 Symantec AntiVirus for Blue Coat Security / Windows 32/64 Symantec AntiVirus for CacheFlow Security Gateway / Windows 32/64 Symantec AntiVirus for Clearswift MIME Sweeper / Windows 32/64 Symantec AntiVirus for Inktomi Traffic Edge / Windows 32/64 Symantec AntiVirus for Microsoft ISA Server / Windows 32/64 Symantec AntiVirus for NetApp Filer/NetCache / Windows 32/64 Symantec BrightMail AntiSpam / Windows 32/64 Symantec Client Security / Windows 32/64 Symantec Mail Security for Domino / Windows 32/64 Symantec Mail Security for Exchange / Windows 32/64 Symantec Mail Security for SMTP / Windows 32/64 Symantec Scan Engine / Windows 32/64 Symantec Web Security for Windows / Windows 32/64 Actualizar las definiciones de virus con Live Update (October 4, 2006 revision 9) |
|
Standar resources |
|
| Property | Value |
| CVE | CVE-2006-4927 |
| BID | 20360 |
Other resources |
|
|
Symantec Security Advisory (SYM06-020) http://securityresponse.symantec.com/avcenter/security/Content/2006.10.05a.html |
|
Version history |
||
| Version | Comments | Date |
| 1.0 | Aviso emitido | 2006-10-16 |