CVE-2006-4927

N/A Unknown
Published: October 10, 2006 Modified: April 23, 2026
View on NVD

Description

The (a) NAVENG (NAVENG.SYS) and (b) NAVEX15 (NAVEX15.SYS) device drivers 20061.3.0.12 and later, as used in Symantec AntiVirus and security products, allow local users to gain privileges by overwriting critical system addresses using a crafted Irp to the IOCTL functions (1) 0x222AD3, (2) 0x222AD7, and (3) 0x222ADB.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://secunia.com/advisories/22288
Source: cve@mitre.org
Patch Vendor Advisory
http://securityreason.com/securityalert/1690
Source: cve@mitre.org
http://securitytracker.com/id?1016994
Source: cve@mitre.org
Exploit Patch
http://securitytracker.com/id?1016995
Source: cve@mitre.org
Exploit Patch
http://securitytracker.com/id?1016996
Source: cve@mitre.org
Exploit Patch
http://securitytracker.com/id?1016997
Source: cve@mitre.org
Exploit Patch
http://securitytracker.com/id?1016998
Source: cve@mitre.org
Exploit Patch
http://securitytracker.com/id?1016999
Source: cve@mitre.org
Exploit Patch
http://securitytracker.com/id?1017000
Source: cve@mitre.org
Exploit Patch
http://securitytracker.com/id?1017001
Source: cve@mitre.org
Exploit Patch
http://securitytracker.com/id?1017002
Source: cve@mitre.org
Exploit Patch
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=417
Source: cve@mitre.org
Patch Vendor Advisory
http://www.kb.cert.org/vuls/id/946820
Source: cve@mitre.org
US Government Resource
http://www.securityfocus.com/archive/1/447849/100/0/threaded
Source: cve@mitre.org
http://www.securityfocus.com/bid/20360
Source: cve@mitre.org
Exploit Patch
http://www.symantec.com/avcenter/security/Content/2006.10.05a.html
Source: cve@mitre.org
Patch
http://www.vupen.com/english/advisories/2006/3928
Source: cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/29360
Source: cve@mitre.org
http://secunia.com/advisories/22288
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://securityreason.com/securityalert/1690
Source: af854a3a-2127-422b-91ae-364da2661108
http://securitytracker.com/id?1016994
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch
http://securitytracker.com/id?1016995
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch
http://securitytracker.com/id?1016996
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch
http://securitytracker.com/id?1016997
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch
http://securitytracker.com/id?1016998
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch
http://securitytracker.com/id?1016999
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch
http://securitytracker.com/id?1017000
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch
http://securitytracker.com/id?1017001
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch
http://securitytracker.com/id?1017002
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=417
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://www.kb.cert.org/vuls/id/946820
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
http://www.securityfocus.com/archive/1/447849/100/0/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/20360
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch
http://www.symantec.com/avcenter/security/Content/2006.10.05a.html
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
http://www.vupen.com/english/advisories/2006/3928
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/29360
Source: af854a3a-2127-422b-91ae-364da2661108

36 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
Exploitation Status
Not in CISA KEV

Affected Vendors

symantec