Sign-up

ID

VAR-200312-0010


CVE

CVE-2003-1310


TITLE

Symantec Norton AntiVirus Device Driver Memory Overwrite Vulnerability

Trust: 0.9

sources: BID: 8329 // CNNVD: CNNVD-200312-094

DESCRIPTION

The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local users to gain privileges by overwriting memory locations via certain control codes (aka "Device Driver Attack"). According to the report, one of the device control operation handlers attempts to write data to an address offset from a pointer parameter passed to DeviceIoControl(). There is no validation on the parameter supplied or the address written to. This vulnerability can be exploited by unprivileged userland programs to crash the affected host or potentially elevate privileges. Norton Antivirus is a popular anti-virus system

Trust: 1.26

sources: NVD: CVE-2003-1310 // BID: 8329 // VULHUB: VHN-8135

AFFECTED PRODUCTS

vendor:symantecmodel:norton antivirusscope:eqversion:2003

Trust: 1.6

vendor:symantecmodel:norton antivirusscope:eqversion:2002

Trust: 1.6

vendor:symantecmodel:norton antivirusscope:eqversion:20030

Trust: 0.3

vendor:symantecmodel:norton antivirusscope:eqversion:20020

Trust: 0.3

vendor:symantecmodel:antivirus corporate editionscope:eqversion:8.1

Trust: 0.3

vendor:symantecmodel:antivirus corporate editionscope:eqversion:8.01

Trust: 0.3

sources: BID: 8329 // CNNVD: CNNVD-200312-094 // NVD: CVE-2003-1310

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2003-1310
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200312-094
value: MEDIUM

Trust: 0.6

VULHUB: VHN-8135
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2003-1310
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-8135
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-8135 // CNNVD: CNNVD-200312-094 // NVD: CVE-2003-1310

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2003-1310

THREAT TYPE

local

Trust: 0.9

sources: BID: 8329 // CNNVD: CNNVD-200312-094

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-200312-094

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-8135

EXTERNAL IDS
db:BIDid:8329
Trust: 2.0
db:SECUNIAid:9460
Trust: 1.7
db:NVDid:CVE-2003-1310
Trust: 1.7
db:OSVDBid:4362
Trust: 1.7
db:CNNVDid:CNNVD-200312-094
Trust: 0.7
db:XFid:12824
Trust: 0.6
db:NSFOCUSid:5247
Trust: 0.6
db:SEEBUGid:SSVID-76765
Trust: 0.1
db:EXPLOIT-DBid:22980
Trust: 0.1
db:VULHUBid:VHN-8135
Trust: 0.1
sources:
            
            
            VULHUB: VHN-8135 // 
            
            
            
            BID: 8329 // 
            
            
            
            CNNVD: CNNVD-200312-094 // 
            
            
            
            NVD: CVE-2003-1310

REFERENCES
url:http://www.securityfocus.com/bid/8329
Trust: 1.7
url:http://www.osvdb.org/4362
Trust: 1.7
url:http://secunia.com/advisories/9460
Trust: 1.7
url:http://sec-labs.hack.pl/papers/win32ddc.php
Trust: 1.4
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/12824
Trust: 1.1
url:http://xforce.iss.net/xforce/xfdb/12824
Trust: 0.6
url:http://www.nsfocus.net/vulndb/5247
Trust: 0.6
url:http://securityresponse.symantec.com/avcenter/security/content/2003.08.08.html
Trust: 0.3
sources:
            
            
            VULHUB: VHN-8135 // 
            
            
            
            BID: 8329 // 
            
            
            
            CNNVD: CNNVD-200312-094 // 
            
            
            
            NVD: CVE-2003-1310

CREDITS
Lord YuP※ yup@tlen.pl
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200312-094

SOURCES
db:VULHUBid:VHN-8135
db:BIDid:8329
db:CNNVDid:CNNVD-200312-094
db:NVDid:CVE-2003-1310

LAST UPDATE DATE
2024-08-14T14:16:12.927000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-8135date:2017-07-29T00:00:00
db:BIDid:8329date:2003-08-02T00:00:00
db:CNNVDid:CNNVD-200312-094date:2006-12-06T00:00:00
db:NVDid:CVE-2003-1310date:2017-07-29T01:29:05.060

SOURCES RELEASE DATE
db:VULHUBid:VHN-8135date:2003-12-31T00:00:00
db:BIDid:8329date:2003-08-02T00:00:00
db:CNNVDid:CNNVD-200312-094date:2003-08-02T00:00:00
db:NVDid:CVE-2003-1310date:2003-12-31T05:00:00