CVE-2003-1310

2006-11-3016:00:00

mitre

www.cve.org

AI Score

6.5

Confidence

High

EPSS

Percentile

0.4%

JSON

The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local users to gain privileges by overwriting memory locations via certain control codes (aka “Device Driver Attack”).

References

sec-labs.hack.pl/papers/win32ddc.php

secunia.com/advisories/9460

www.osvdb.org/4362

www.securityfocus.com/bid/8329

exchange.xforce.ibmcloud.com/vulnerabilities/12824