CVE-2007-1793

Symantec Antivirus - Improper Input Validation

Title source: rule

Description

SPBBCDrv.sys in Symantec Norton Personal Firewall 2006 9.1.0.33 and 9.1.1.7 does not validate certain arguments before being passed to hooked SSDT function handlers, which allows local users to cause a denial of service (crash) or possibly execute arbitrary code via crafted arguments to the (1) NtCreateMutant and (2) NtOpenEvent functions. NOTE: it was later reported that Norton Internet Security 2008 15.0.0.60, and possibly other versions back to 2006, are also affected.

Exploits (1)

exploitdb WORKING POC VERIFIED

by David Matousek · cdoswindows

https://www.exploit-db.com/exploits/29810

View Code ZIP pw:eip

References (17)

[Vendor Advisory] http://www.vupen.com/english/advisories/2007/1192

[Vendor Advisory] http://www.matousec.com/info/advisories/Norton-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.php

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/464456/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1021386

[Patch] http://www.securitytracker.com/id?1017837

[Exploit] http://www.securityfocus.com/bid/23241

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1021388

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1021389

[Various Sources] http://www.matousec.com/info/advisories/plague-in-security-software-drivers.php

[Various Sources] http://securityresponse.symantec.com/avcenter/security/Content/2008.12.12.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/33352

[Various Sources] http://www.matousec.com/projects/windows-personal-firewall-analysis/plague-in-security-software-drivers.php

[Third Party Advisory, VDB Entry] http://osvdb.org/34692

[Patch] http://www.securitytracker.com/id?1017838

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1021387

[Vendor Advisory] http://secunia.com/advisories/24677

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/479830/100/0/threaded

Scores

EPSS 0.0028

EPSS Percentile 51.4%

Details

CWE

CWE-20

Status published

Products (50)

symantec/antivirus 10.0

symantec/antivirus 10.0.1

symantec/antivirus 10.0.1.1

symantec/antivirus 10.0.2

symantec/antivirus 10.0.2.1

symantec/antivirus 10.0.2.2

symantec/antivirus 10.0.3

symantec/antivirus 10.0.4

symantec/antivirus 10.0.5

symantec/antivirus 10.0.6

... and 40 more

Published Apr 02, 2007

Tracked Since Feb 18, 2026