CVE-2006-4927

{"id": "CVE-2006-4927", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-10-10T04:06:00.000", "references": [{"url": "http://secunia.com/advisories/22288", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securityreason.com/securityalert/1690", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1016994", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1016995", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1016996", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1016997", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1016998", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1016999", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1017000", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1017001", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1017002", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=417", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.kb.cert.org/vuls/id/946820", "tags": ["US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/447849/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/20360", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://www.symantec.com/avcenter/security/Content/2006.10.05a.html", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/3928", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29360", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The (a) NAVENG (NAVENG.SYS) and (b) NAVEX15 (NAVEX15.SYS) device drivers 20061.3.0.12 and later, as used in Symantec AntiVirus and security products, allow local users to gain privileges by overwriting critical system addresses using a crafted Irp to the IOCTL functions (1) 0x222AD3, (2) 0x222AD7, and (3) 0x222ADB."}, {"lang": "es", "value": "Los controladores de dispositivo de (a) NAVENG (NAVENG.SYS) y (b) NAVEX15 (NAVEX15.SYS) 20061.3.0.12 y posteriores, utilizados en Symantec AntiVirus y en productos de seguridad, permiten a usuarios locales escalar privilegios sobreescribiendo direcciones cr\u00edticas del sistema utilizando un Irp (paquete de petici\u00f3n de Entrada/salida) creado artesanalmente para las funciones IOCTL (1) 0x222AD3, (2) 0x222AD7, y (3) 0x222ADB."}], "lastModified": "2018-10-17T21:40:31.607", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:symantec:naveng_driver:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1278247D-9258-46E2-91D7-29FB40C616D9"}, {"criteria": "cpe:2.3:a:symantec:navex15_driver:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84278ED8-D4D2-4351-9A0E-5F811A4C06E9"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org", "evaluatorSolution": "Update 20061.3.0.12 has been released by the vendor for each vulnerable driver.\r\nAdditionally, an update to the virus definitions (October 4, 2006 revision 9 or later) is required."}