CVE-2003-1310

Symantec Norton AntiVirus 2002 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-1310. PoCs published by Lord Yup.

AI-analyzed exploit summary This exploit targets a memory corruption vulnerability in Symantec Norton AntiVirus Device Driver (CVE-2003-1310) by leveraging an unvalidated pointer in DeviceIoControl to overwrite memory and execute arbitrary shellcode. The PoC allocates executable memory, fills it with NOPs and shellcode, and triggers the vulnerability to achieve privilege escalation.

Description

The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local users to gain privileges by overwriting memory locations via certain control codes (aka "Device Driver Attack").

Exploits (1)

exploitdb WORKING POC VERIFIED
by Lord Yup · assemblylocalwindows
https://www.exploit-db.com/exploits/22980

This exploit targets a memory corruption vulnerability in Symantec Norton AntiVirus Device Driver (CVE-2003-1310) by leveraging an unvalidated pointer in DeviceIoControl to overwrite memory and execute arbitrary shellcode. The PoC allocates executable memory, fills it with NOPs and shellcode, and triggers the vulnerability to achieve privilege escalation.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Symantec Norton AntiVirus Device Driver
No auth needed
Prerequisites: Unprivileged user access · Norton AntiVirus Device Driver loaded · Correct MAP_BASE address for the target system
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/4362
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/12824
Various Sources x_refsource_misc
http://sec-labs.hack.pl/papers/win32ddc.php
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/8329
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/9460

Scores

EPSS 0.0117
EPSS Percentile 63.6%

Details

Status published
Products (2)
symantec/norton_antivirus 2002
symantec/norton_antivirus 2003
Published Dec 31, 2003
Tracked Since Feb 18, 2026