CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2003-1310

The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local users to gain privileges by overwriting memory locations via certain control codes (aka "Device Driver Attack").

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.2%

CVSS Severity

CVSS v2 Score 4.6

References

http://sec-labs.hack.pl/papers/win32ddc.php
http://secunia.com/advisories/9460
http://www.osvdb.org/4362
http://www.securityfocus.com/bid/8329
https://exchange.xforce.ibmcloud.com/vulnerabilities/12824
http://sec-labs.hack.pl/papers/win32ddc.php
http://secunia.com/advisories/9460
http://www.osvdb.org/4362
http://www.securityfocus.com/bid/8329
https://exchange.xforce.ibmcloud.com/vulnerabilities/12824

Products affected by CVE-2003-1310

Symantec » Norton Antivirus » Version: 2002

cpe:2.3:a:symantec:norton_antivirus:2002
Symantec » Norton Antivirus » Version: 2003

cpe:2.3:a:symantec:norton_antivirus:2003

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-1310

Products

Pricing

Contact Us