CVE-2006-3455

{"id": "CVE-2006-3455", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.1, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-10-23T20:07:00.000", "references": [{"url": "http://secunia.com/advisories/22536", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1017108", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1017109", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/449524/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/20684", "source": "cve@mitre.org"}, {"url": "http://www.symantec.com/avcenter/security/Content/2006.10.23.html", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/4157", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29762", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The SAVRT.SYS device driver, as used in Symantec AntiVirus Corporate Edition 8.1 and 9.0.x up to 9.0.3, and Symantec Client Security 1.1 and 2.0.x up to 2.0.3, allows local users to execute arbitrary code via a modified address for the output buffer argument to the DeviceIOControl function."}, {"lang": "es", "value": "El controlador de dispositivo SAVRT.SYS, utilizado en Symantec AntiVirus Corporate Edition 8.1 y 9.0.x hasta 9.0.3, y en Symantec Client Security 1.1 y 2.0.x hasta 2.0.3, permite a usuarios locales ejecutar c\u00f3digo de su elecci\u00f3n mediante una direcci\u00f3n modificada para el argumento de b\u00fafer de salida en la funci\u00f3n DeviceIOControl."}], "lastModified": "2018-10-18T16:47:38.097", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:symantec:client_security:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7483F6DD-EDC0-497E-A5A9-B186E02CCCEA"}, {"criteria": "cpe:2.3:a:symantec:client_security:1.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2DA2590E-DFB0-4B72-99BC-B49AD97A4969"}, {"criteria": "cpe:2.3:a:symantec:client_security:1.1.1_build_393:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "766C850E-817E-41AB-B0FF-413513548BC0"}, {"criteria": "cpe:2.3:a:symantec:client_security:1.1.1_mr1_build_8.1.1.314a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB47C16B-5221-4D64-BDB2-65D072A66C02"}, {"criteria": "cpe:2.3:a:symantec:client_security:1.1.1_mr2_build_8.1.1.319:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "204F2046-F116-45D7-9256-179A3B59886A"}, {"criteria": "cpe:2.3:a:symantec:client_security:1.1.1_mr3_build_8.1.1.323:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD0C67C0-3CF1-4BAD-A673-9B783E1D0724"}, {"criteria": "cpe:2.3:a:symantec:client_security:1.1.1_mr4_build_8.1.1.329:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "274EA5DA-9519-46DE-B11E-87BDF1978E14"}, {"criteria": "cpe:2.3:a:symantec:client_security:1.1.1_mr5_build_8.1.1.336:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "044C020A-0BCC-4037-BC32-73385A0BE019"}, {"criteria": "cpe:2.3:a:symantec:client_security:1.1.1_mr6_b8.1.1.266:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A0176BE-3D55-422B-9FDD-961A00CFAC19"}, {"criteria": "cpe:2.3:a:symantec:client_security:1.1_stm_b8.1.0.825a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA3D7305-B8D0-4165-9F0F-50A49142EF2A"}, {"criteria": "cpe:2.3:a:symantec:client_security:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0DDD0E02-306D-4675-B73A-2C2F619CDDCF"}, {"criteria": "cpe:2.3:a:symantec:client_security:2.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "251E7DE8-4485-438E-B62D-1BF508ECCCF5"}, {"criteria": "cpe:2.3:a:symantec:client_security:2.0.1_build_9.0.1.1000:mr1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D934F853-C7E0-421E-9AF3-B7B49228722F"}, {"criteria": "cpe:2.3:a:symantec:client_security:2.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "742DB20E-AB26-4CF4-A383-BDCF3FBA448F"}, {"criteria": "cpe:2.3:a:symantec:client_security:2.0.2_build_9.0.2.1000:mr2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D608AACF-A4BC-49CE-BE49-E8F3AEF31DC3"}, {"criteria": "cpe:2.3:a:symantec:client_security:2.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A5E4BCD7-E441-417A-8C52-E1DE80AD67CF"}, {"criteria": "cpe:2.3:a:symantec:client_security:2.0.3_build_9.0.3.1000:mr3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3238894A-3C25-4CC8-A319-8AA7246FEC51"}, {"criteria": "cpe:2.3:a:symantec:client_security:2.0_scf_7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7C2D813-C219-4FF3-9C3B-DBB855480492"}, {"criteria": "cpe:2.3:a:symantec:client_security:2.0_stm_build_9.0.0.338:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A5A00A25-A52F-4E9D-AAD0-194171C772FE"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.1:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3AA02AEB-362B-4A09-92E3-D6D8BB4B6CB9"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.1.0.825a:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3A82AC27-8BE6-47F7-A6EC-F4C21373AA58"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.1.1:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ECAA6170-5520-4AA9-8358-5F91FD10420E"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.1.1.319:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E626F14C-FDE9-4C6A-8CE7-B99CD4FEE485"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.1.1.323:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC4CFE5A-4D51-405D-B92E-37DE4E617ABE"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.1.1.329:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "727A116A-D18C-4F3F-A6A8-2C6107FFB8C0"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.1.1.366:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EAE76215-2A7E-4D71-8757-AE10E4A9AE0D"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.1.1.377:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF45DF9D-D7BE-41AD-A838-0AF9A264EBFE"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.1.1_build8.1.1.314a:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4A6612F1-4CA8-427A-AED4-854F943BA3D8"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.1.1_build393:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "902A4011-83C5-4A3B-B443-C51EA855E8E7"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.01.434:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8BB225A0-7FB9-4AD2-8ED2-5CC1AEBAAB3C"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.01.437:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9603C423-F24A-4607-B721-D02EDA94AE8D"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.01.446:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "574AAAA6-8181-457B-84CE-5AEB1895E3B6"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.01.457:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF957AD3-B6E5-4BD7-832F-33E734817B77"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.01.460:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14D862F4-BE5F-4E6B-9955-ACFB48A5D3B1"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.01.464:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "768B7F5E-E4AD-420E-92FA-A58E1AE3D1BC"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:8.01.471:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C15B7FEA-E6A9-4DBE-B1A9-E17E91512A77"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:9.0.1:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2860637E-6FA5-445A-86B5-E9F2D2D7DD37"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:9.0.1.1.1000:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDF0DA40-1AC4-4610-AEAC-F431E23BAEAF"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:9.0.1.1000:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "018D1F3B-BAFC-461E-B833-9E0F98A6533D"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:9.0.2:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B9AED5E-2D66-4EB2-95CC-158D909AAE6E"}, {"criteria": "cpe:2.3:a:symantec:norton_antivirus:9.0.2.1000:*:corporate:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5696AC09-E8BB-4060-9A81-EA2B190B850A"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}