Symantec Device Driver Elevation of Privilege

Symantec was notified of a vulnerability in a device driver which, if successfully exploited, could allow a local attacker to execute arbitrary code with elevated privileges or to crash the system.

Affected Products

Product Version Solution
Symantec AntiVirus Corporate Edition 8.1 8.1.1 MR9
https://fileconnect.symantec.com/
Symantec AntiVirus Corporate Edition 9.0.3 and earlier 9.0.4 MR4 build 1000 or later
https://fileconnect.symantec.com/
Symantec Client Security 1.1 1.1.1 MR9 Build 393
https://fileconnect.symantec.com/
Symantec Client Security 2.0.3 and earlier 2.0.4 MR4 build 1000
https://fileconnect.symantec.com/

More at http://securityresponse.symantec.com/avcenter/security/Content/2006.10.23.html

Leave a Reply