Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Symantec symtdi.sys before 7.0.0, as distributed in Symantec AntiVirus Corporate Edition 9 through 10.1 and Client Security 2.0 through 3.1, Norton AntiSpam 2005, and Norton AntiVirus, Internet Security, Personal Firewall, and System Works 2005 and 2006; allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in an IOCTL 0x83022323 request to \\symTDI\, which results in memory overwrite.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Symantec AntiVirus symtdi.sys驱动本地权限提升漏洞
Vulnerability Description
Symantec AntiVirus是非常流行的杀毒解决方案。 Symantec AntiVirus的驱动在处理特定参数时存在漏洞,本地攻击者可能利用此漏洞控制系统。 Symantec杀毒软件所使用的\\symTDI\设备驱动在处理IOCTL 0x83022323时没有正确地验证地址空间,如果本地攻击者向IOCTL处理函数提交了特制IRP参数的话,就可能导致覆盖内存,以内核权限执行任意指令。
CVSS Information
N/A
Vulnerability Type
N/A