New User, Welcome!     Login

Norton 360

[W02-1008] GearSoftware Powered Products Local Privilege Escalation (Microsoft Windows Kernel IopfCompleteRequest Integer Overflow)

   1. The underlying vulnerability: Microsoft Windows Kernel
IopfCompleteRequest Integer Overflow.
   2. The Attack Vector: GearAspiWDM.sys Insecure Method.
   3. Vulnerable Products: Every GearSoftware powered product that is
bundled with GEARAspiWDM.sys. (e.g Norton 360, Apple iTunes...)


Whilst the underlying vulnerability is, under our point of view, a real
vulnerability, the Attack Vector may or may not be considered a
vulnerability by itself. Note that if we supress the underlying

Symantec Product Security: Symantec Device Driver Local Elevation of Privilege

Symantec Client Security 2.x, prior to SCS 2.0 MR6 MP1 


Unaffected Products 

Norton 360 
Norton AntiBot
Norton Confidential 
Norton AntiVirus 2007and later
Norton Internet Security 2007and later 
Symantec AntiVirus Corporate Edition 10.2.x

[G-SEC 47-2009] Symantec generic PDF detection bypass

- Symantec Scan Engine
- Symantec Client Security
- Symantec Endpoint Protection
- Symantec AntiVirus Corporate Edition
- Norton Internet Security
- Norton 360
- Norton AntiVirus
- Norton Systemworks

Patch availability :
~~~~~~~~~~~~~~~~~~~~


Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!