{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2006-10-23T00:00:00.000Z","descriptions":[{"lang":"en","value":"The SAVRT.SYS device driver, as used in Symantec AntiVirus Corporate Edition 8.1 and 9.0.x up to 9.0.3, and Symantec Client Security 1.1 and 2.0.x up to 2.0.3, allows local users to execute arbitrary code via a modified address for the output buffer argument to the DeviceIOControl function."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2018-10-18T14:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"symantec-savrt-privilege-escalation(29762)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/29762"},{"name":"20684","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/20684"},{"name":"ADV-2006-4157","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/4157"},{"tags":["x_refsource_CONFIRM"],"url":"http://www.symantec.com/avcenter/security/Content/2006.10.23.html"},{"name":"20061023 Symantec Product Security: Symantec Device Driver Elevation of Privileg","tags":["mailing-list","x_refsource_BUGTRAQ"],"url":"http://www.securityfocus.com/archive/1/449524/100/0/threaded"},{"name":"22536","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/22536"},{"name":"1017108","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://securitytracker.com/id?1017108"},{"name":"1017109","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://securitytracker.com/id?1017109"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2006-3455","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The SAVRT.SYS device driver, as used in Symantec AntiVirus Corporate Edition 8.1 and 9.0.x up to 9.0.3, and Symantec Client Security 1.1 and 2.0.x up to 2.0.3, allows local users to execute arbitrary code via a modified address for the output buffer argument to the DeviceIOControl function."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"symantec-savrt-privilege-escalation(29762)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/29762"},{"name":"20684","refsource":"BID","url":"http://www.securityfocus.com/bid/20684"},{"name":"ADV-2006-4157","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/4157"},{"name":"http://www.symantec.com/avcenter/security/Content/2006.10.23.html","refsource":"CONFIRM","url":"http://www.symantec.com/avcenter/security/Content/2006.10.23.html"},{"name":"20061023 Symantec Product Security: Symantec Device Driver Elevation of Privileg","refsource":"BUGTRAQ","url":"http://www.securityfocus.com/archive/1/449524/100/0/threaded"},{"name":"22536","refsource":"SECUNIA","url":"http://secunia.com/advisories/22536"},{"name":"1017108","refsource":"SECTRACK","url":"http://securitytracker.com/id?1017108"},{"name":"1017109","refsource":"SECTRACK","url":"http://securitytracker.com/id?1017109"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-07T18:30:33.727Z"},"title":"CVE Program Container","references":[{"name":"symantec-savrt-privilege-escalation(29762)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/29762"},{"name":"20684","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/20684"},{"name":"ADV-2006-4157","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/4157"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://www.symantec.com/avcenter/security/Content/2006.10.23.html"},{"name":"20061023 Symantec Product Security: Symantec Device Driver Elevation of Privileg","tags":["mailing-list","x_refsource_BUGTRAQ","x_transferred"],"url":"http://www.securityfocus.com/archive/1/449524/100/0/threaded"},{"name":"22536","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/22536"},{"name":"1017108","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://securitytracker.com/id?1017108"},{"name":"1017109","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://securitytracker.com/id?1017109"}]}]},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2006-3455","datePublished":"2006-10-23T20:00:00.000Z","dateReserved":"2006-07-07T00:00:00.000Z","dateUpdated":"2024-08-07T18:30:33.727Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}