← Back

CVE-2007-1476

nvd nist
Published: Mar 16, 2007Modified: Apr 23, 2026

JSON object

Loading...
1.9
Vector
AV:L/AC:M/Au:N/C:N/I:N/A:P
Exploitability: 3.4 / Impact: 2.9
Source: NVD

Description

The SymTDI device driver (SYMTDI.SYS) in Symantec Norton Personal Firewall 2006 9.1.1.7 and earlier, Internet Security 2005 and 2006, AntiVirus Corporate Edition 3.0.x through 10.1.x, and other Norton products, allows local users to cause a denial of service (system crash) by sending crafted data to the driver's \Device file, which triggers invalid memory access, a different vulnerability than CVE-2006-4855.

Affected (84)

Symantec
6 products
Client Security
Norton Antispam
Norton Antivirus
Norton Internet Security
Norton Personal Firewall
Norton System Works
Configuration A
84 vulnerable
Vulnerable SoftwareAffected Versions
Symantec
Client Security
Version 2.0.1
Client Security
Version 2.0.1_build_9.0.1.1000 mr1
Client Security
Version 2.0.2
Client Security
Version 2.0.2_build_9.0.2.1000 mr2
Client Security
Version 2.0.3
Client Security
Version 2.0.3_build_9.0.3.1000 mr3
Client Security
Version 2.0.4
Client Security
Version 2.0.4 mr4_build1000
Client Security
Version 2.0.5
Client Security
Version 2.0.5_build_1100
Client Security
Version 2.0.5_build_1100_mp1 mr5
Client Security
Version 2.0.6
Client Security
Version 2.0.6 mr6
Client Security
Version 2.0
Client Security
Version 2.0
Client Security
Version 2.0 build_9.0.0.338
Client Security
Version 2.0 build_9.0.0.338
Client Security
Version 2.0_scf_7.1
Client Security
Version 2.0_stm_build_9.0.0.338
Client Security
Version 2.1
Client Security
Version 3.0.0.359
Client Security
Version 3.0.1.1000
Client Security
Version 3.0.1.1001
Client Security
Version 3.0.1.1007
Client Security
Version 3.0.1.1008
Client Security
Version 3.0.1.1009
Client Security
Version 3.0.2.2000
Client Security
Version 3.0.2.2001
Client Security
Version 3.0.2.2002
Client Security
Version 3.0.2.2010
Client Security
Version 3.0.2.2011
Client Security
Version 3.0.2.2020
Client Security
Version 3.0.2.2021
Client Security
Version 3.0.2
Client Security
Version 3.0
Client Security
Version 3.1.0.396
Client Security
Version 3.1.0.401
Client Security
Version 3.1.394
Client Security
Version 3.1.396
Client Security
Version 3.1.400
Client Security
Version 3.1.401
Client Security
Version 3.1
Norton Antispam
Version 2005
Symantec
Norton Antivirus
Version 10.0.1.1000
Norton Antivirus
Version 10.0.1.1007
Norton Antivirus
Version 10.0.1.1008
Norton Antivirus
Version 10.0.2.2000
Norton Antivirus
Version 10.0.2.2001
Norton Antivirus
Version 10.0.2.2002
Norton Antivirus
Version 10.0.2.2010
Norton Antivirus
Version 10.0.2.2011
Norton Antivirus
Version 10.0.2.2020
Norton Antivirus
Version 10.0.2.2021
Norton Antivirus
Version 10.0
Norton Antivirus
Version 10.1.394
Norton Antivirus
Version 10.1.396
Norton Antivirus
Version 10.1.4.4010
Norton Antivirus
Version 10.1.400
Norton Antivirus
Version 10.1.401
Norton Antivirus
Version 10.1.4
Norton Antivirus
Version 10.1
Norton Antivirus
Version 2005
Norton Antivirus
Version 2006
Norton Antivirus
Version 3.0
Norton Antivirus
Version 9.0.0.338
Norton Antivirus
Version 9.0.1.1.1000
Norton Antivirus
Version 9.0.1.1000
Norton Antivirus
Version 9.0.1
Norton Antivirus
Version 9.0.2.1000
Norton Antivirus
Version 9.0.2
Norton Antivirus
Version 9.0.3.1000
Norton Antivirus
Version 9.0.4
Norton Antivirus
Version 9.0.5.1100
Norton Antivirus
Version 9.0.5
Norton Antivirus
Version 9.0.6.1000
Norton Antivirus
Version 9.0
Symantec
Norton Internet Security
Version 2005
Norton Internet Security
Version 2006
Symantec
Norton Personal Firewall
Up to 2006_9.1.1.7
Norton Personal Firewall
Version 2005
Norton Personal Firewall
Version 2006
Norton Personal Firewall
Version 2006_9.1.0.33
Symantec
Norton System Works
Version 2005
Norton System Works
Version 2006

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (18)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.