Strix
26.1K

CVE-2006-4855

UnknownEPSS 1.29%

Last modified

CVE-2006-4855 is a vulnerability of currently unknown severity. The \Device\SymEvent driver in Symantec Norton Personal Firewall 2006 9.1.0.33, and other versions of Norton Personal Firewall, Internet Security, AntiVirus, SystemWorks, Symantec Client Security SCS 1.x, 2.x, 3.0, and 3.1, Symantec AntiVirus Corporate Edition SAVCE 8.x, 9.x, 10.0, and 10.1, Symantec pcAnywhere 11.5 only, and Symantec Host, allows local users to cause a denial of service (system crash) via invalid data, as demonstrated by calling DeviceIoControl to send the data.. EPSS estimates a 1.29% chance of exploitation in the next 30 days.

Description

The \Device\SymEvent driver in Symantec Norton Personal Firewall 2006 9.1.0.33, and other versions of Norton Personal Firewall, Internet Security, AntiVirus, SystemWorks, Symantec Client Security SCS 1.x, 2.x, 3.0, and 3.1, Symantec AntiVirus Corporate Edition SAVCE 8.x, 9.x, 10.0, and 10.1, Symantec pcAnywhere 11.5 only, and Symantec Host, allows local users to cause a denial of service (system crash) via invalid data, as demonstrated by calling DeviceIoControl to send the data.

Metrics

EPSS Probability
1.29%

66.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersionsUpdate
SymantecClient Security1.0
SymantecClient Security1.0.0_b8.01.9378
SymantecClient Security1.0.1
SymantecClient Security1.0.1_build_8.01.425aMr1
SymantecClient Security1.0.1_build_8.01.429cMr2
SymantecClient Security1.0.1_build_8.01.434Mr3
SymantecClient Security1.0.1_build_8.01.437
SymantecClient Security1.0.1_build_8.01.446Mr4
SymantecClient Security1.0.1_build_8.01.457Mr5
SymantecClient Security1.0.1_build_8.01.460Mr6
SymantecClient Security1.0.1_build_8.01.464Mr7
SymantecClient Security1.0.1_build_8.01.471Mr8
SymantecClient Security1.0.1_build_8.01.501Mr9
SymantecClient Security1.0_build_8.01.9374
SymantecClient Security1.1
SymantecClient Security1.1.1
SymantecClient Security1.1.1_build_393
SymantecClient Security1.1.1_mr1_build_8.1.1.314a
SymantecClient Security1.1.1_mr2_build_8.1.1.319
SymantecClient Security1.1.1_mr3_build_8.1.1.323
SymantecClient Security1.1.1_mr4_build_8.1.1.329
SymantecClient Security1.1.1_mr5_build_8.1.1.336
SymantecClient Security1.1.1_mr6_b8.1.1.266
SymantecClient Security1.1_stm_b8.1.0.825a
SymantecClient Security2.0
SymantecClient Security2.0.1_build_9.0.1.1000Mr1
SymantecClient Security2.0.2_build_9.0.2.1000Mr2
SymantecClient Security2.0.3_build_9.0.3.1000Mr3
SymantecClient Security2.0.5_build_1100
SymantecClient Security2.0_scf_7.1
SymantecClient Security2.0_stm_build_9.0.0.338
SymantecClient Security3.0
SymantecClient Security3.1
SymantecHost IdsAll versions
SymantecNorton Antivirus2.1
SymantecNorton Antivirus8.0
SymantecNorton Antivirus8.0.1
SymantecNorton Antivirus8.0.1.425a
SymantecNorton Antivirus8.0.1.425c
SymantecNorton Antivirus8.0.1.501
SymantecNorton Antivirus8.0.1.9374
SymantecNorton Antivirus8.0.1.9378
SymantecNorton Antivirus8.1
SymantecNorton Antivirus8.1.0.825a
SymantecNorton Antivirus8.1.1
SymantecNorton Antivirus8.1.1.319
SymantecNorton Antivirus8.1.1.323
SymantecNorton Antivirus8.1.1.329
SymantecNorton Antivirus8.1.1.366
SymantecNorton Antivirus8.1.1.377

Showing 50 of 97 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2006-4855?
The \Device\SymEvent driver in Symantec Norton Personal Firewall 2006 9.1.0.33, and other versions of Norton Personal Firewall, Internet Security, AntiVirus, SystemWorks, Symantec Client Security SCS 1.x, 2.x, 3.0, and 3.1, Symantec AntiVirus Corporate Edition SAVCE 8.x, 9.x, 10.0, and 10.1, Symantec pcAnywhere 11.5 only, and Symantec Host, allows local users to cause a denial of service (system crash) via invalid data, as demonstrated by calling DeviceIoControl to send the data.
How severe is CVE-2006-4855?
Severity scoring for CVE-2006-4855 is pending analysis. The EPSS model estimates a 1.29% probability of exploitation in the next 30 days.
How do I fix CVE-2006-4855?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2006-4855?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST