CVE-2007-1476

Symantec Client Security - Denial of Service via SymTDI Driver Input Buffer

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1476. PoCs published by David Matousek.

AI-analyzed exploit summary The provided text describes a local denial-of-service vulnerability in Symantec's SYMTDI.SYS device driver. It references a SecurityFocus BID and mentions a similar issue (BID 22961), but no actual exploit code is included.

Description

The SymTDI device driver (SYMTDI.SYS) in Symantec Norton Personal Firewall 2006 9.1.1.7 and earlier, Internet Security 2005 and 2006, AntiVirus Corporate Edition 3.0.x through 10.1.x, and other Norton products, allows local users to cause a denial of service (system crash) by sending crafted data to the driver's \Device file, which triggers invalid memory access, a different vulnerability than CVE-2006-4855.

Exploits (1)

exploitdb WRITEUP VERIFIED

by David Matousek · textdoswindows

https://www.exploit-db.com/exploits/29743

View Code ZIP pw:eip

The provided text describes a local denial-of-service vulnerability in Symantec's SYMTDI.SYS device driver. It references a SecurityFocus BID and mentions a similar issue (BID 22961), but no actual exploit code is included.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Theoretical

Target: Symantec SYMTDI.SYS device driver

Auth required

Prerequisites: Local authenticated access to the target system

MITRE ATT&CK