CVE-2007-3673

Symantec symtdi.sys before 7.0.0, as distributed in Symantec AntiVirus Corporate Edition 9 through 10.1 and Client Security 2.0 through 3.1, Norton AntiSpam 2005, and Norton AntiVirus, Internet Security, Personal Firewall, and System Works 2005 and 2006; allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in an IOCTL 0x83022323 request to \symTDI, which results in memory overwrite.

Published: Jul 15, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-3673
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
symantec / norton_antivirus	10.1	10.1.x
symantec / client_security	3.0	3.0.x
symantec / norton_antivirus	9.0.2.1000	9.0.2.1000.x
symantec / norton_antivirus	9.0.3.1000	9.0.3.1000.x
symantec / norton_system_works	2005	2005.x
symantec / norton_antivirus	9.0.2	9.0.2.x
symantec / norton_antivirus	10.0	10.0.x
symantec / norton_antivirus	9.0.1.1.1000	9.0.1.1.1000.x
symantec / norton_system_works	2006	2006.x
symantec / norton_antivirus	9.0.5.1100	9.0.5.1100.x
symantec / norton_antivirus	9.0.1	9.0.1.x
symantec / norton_antivirus	9.0.1.1000	9.0.1.1000.x
symantec / norton_antispam	2005	2005.x
symantec / norton_antivirus	9.0.4	9.0.4.x
symantec / norton_antivirus	2006	2006.x
symantec / norton_antivirus	9.0.0.338	9.0.0.338.x
symantec / norton_personal_firewall	2005	2005.x
symantec / client_security	2.0	2.0.x
symantec / norton_personal_firewall	2006	2006.x
symantec / norton_internet_security	2006	2006.x
symantec / client_security	3.1	3.1.x
symantec / norton_antivirus	2005	2005.x
symantec / norton_internet_security	2005	2005.x
symantec / norton_antivirus	9.0	9.0.x
symantec / norton_antivirus	9.0.5	9.0.5.x

Vulnerability Database

289,697

CVE-2007-3673