Apache-Talk @lexa.ru 

Inet-Admins @info.east.ru 

Filmscanners @halftone.co.uk 

Security-alerts @yandex-team.ru 

nginx-ru @sysoev.ru 

   


   


   

















      :: Security-alerts
Security-Alerts mailing list archive (security-alerts@yandex-team.ru)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[security-alerts] FW: [SA21938] Symantec Norton Personal Firewall Denial of Service



> 
> TITLE:
> Symantec Norton Personal Firewall Denial of Service
> 
> SECUNIA ADVISORY ID:
> SA21938
> 
> VERIFY ADVISORY:
> http://secunia.com/advisories/21938/
> 
> CRITICAL:
> Not critical
> 
> IMPACT:
> DoS
> 
> WHERE:
> Local system
> 
> SOFTWARE:
> Symantec Norton Personal Firewall 2005
> http://secunia.com/product/6637/
> Symantec Norton Personal Firewall 2006
> http://secunia.com/product/6638/
> 
> DESCRIPTION:
> David Matousek has discovered a vulnerability in Symantec Norton
> Personal Firewall, which can be exploited by malicious, local users
> to cause a Denial of Service.
> 
> The vulnerability is caused due to an error in the handling of data
> sent to the "\Device\SymEvent" device which is writable by
> "Everyone". This can be exploited to crash a vulnerable system by
> sending malformed data.
> 
> The vulnerability has been confirmed in Symantec Norton Personal
> Firewall 2005 versions 8.0.5.14 and 8.0.7.1, and has also been
> reported in Symantec Norton Personal Firewall 2006 version 9.1.0.33.
> Other versions may also be affected.
> 
> SOLUTION:
> Grant only trusted users access to affected systems.
> 
> PROVIDED AND/OR DISCOVERED BY:
> David Matousek
> 
> ORIGINAL ADVISORY:
> http://www.matousec.com/info/advisories/Norton-Insufficient-va
> lidation-of-SymEvent-driver-input-buffer.php
> 



 




Copyright © Lexa Software, 1996-2009.