CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-1495

The \Device\SymEvent driver in Symantec Norton Personal Firewall 2006 9.1.1.7, and possibly other products using symevent.sys 12.0.0.20, allows local users to cause a denial of service (system crash) via invalid data, as demonstrated by calling DeviceIoControl to send the data, a reintroduction of CVE-2006-4855.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.4%

CVSS Severity

CVSS v2 Score 4.9

References

http://securityreason.com/securityalert/2445
http://www.securityfocus.com/archive/1/462792/100/0/threaded
http://www.securityfocus.com/bid/22961
http://securityreason.com/securityalert/2445
http://www.securityfocus.com/archive/1/462792/100/0/threaded
http://www.securityfocus.com/bid/22961

Products affected by CVE-2007-1495

Symantec » Norton Personal Firewall » Version: 2006_9.1.1.7

cpe:2.3:a:symantec:norton_personal_firewall:2006_9.1.1.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-1495

Products

Pricing

Contact Us