CVE-2003-1310 Information

Description

The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local users to gain privileges by overwriting memory locations via certain control codes (aka \Device Driver Attack).

Reference

http://sec-labs.hack.pl/papers/win32ddc.php http://secunia.com/advisories/9460 http://www.osvdb.org/4362 http://www.securityfocus.com/bid/8329 https://exchange.xforce.ibmcloud.com/vulnerabilities/12824