MOABI : Continuous Software Improvement

CVE-2003-1310
Description	The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local users to gain privileges by overwriting memory locations via certain control codes (aka "Device Driver Attack").
Impact	CVSS v2 : 4.6 MEDIUM
Type	NVD-CWE-Other
Attack Vector	CVSSv2 Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P
Quick links	CVE, NVD, CERT, Metasploit, Exploit-db, Fulldisc, Bugtraq, Microsoft, Red Hat, Debian, GitHub code/issues, Google
References	http://sec-labs.hack.pl/papers/win32ddc.php http://secunia.com/advisories/9460 http://www.osvdb.org/4362 http://www.securityfocus.com/bid/8329 https://exchange.xforce.ibmcloud.com/vulnerabilities/12824