Symantec Norton Personal Firewall Hooked Functions Denial of Service Vulnerability - Calendar Of Updates
(Donna経由)
Symantec Norton Personal FireWall 2006 でローカルアタッカーがシステムをクラッシュできる脆弱性が存在するそうです。
A vulnerability has been identified in Symantec Norton Personal Firewall, which could be exploited by local attackers to cause a denial of service. This flaw is due to errors in the "SPBBCDrv.sys" driver when handling a "NtCreateMutant()" or "NtOpenEvent()" call with malformed arguments, which could be exploited by local attackers to crash a vulnerable system.