low
1.9
CWE
20
Advisory Published
Updated

CVE-2007-1476: Input Validation

First published: Fri Mar 16 2007(Updated: )

The SymTDI device driver (SYMTDI.SYS) in Symantec Norton Personal Firewall 2006 9.1.1.7 and earlier, Internet Security 2005 and 2006, AntiVirus Corporate Edition 3.0.x through 10.1.x, and other Norton products, allows local users to cause a denial of service (system crash) by sending crafted data to the driver's \Device file, which triggers invalid memory access, a different vulnerability than CVE-2006-4855.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Symantec Norton Antivirus with Backup=10.1
Symantec Client Security=3.0
Symantec Client Security=3.0.1.1009
Symantec Norton Antivirus with Backup=9.0.2.1000
Symantec Norton Antivirus with Backup=9.0.3.1000
Symantec Client Security=2.0.6
Symantec Norton System Works=2005
Symantec Client Security=3.0.2.2020
Symantec Client Security=2.0.6-mr6
Symantec Client Security=2.1
Symantec Norton Antivirus with Backup=10.1.400
Symantec Client Security=2.0-build_9.0.0.338
Symantec Client Security=3.0.2.2021
Symantec Client Security=2.0.1_build_9.0.1.1000-mr1
Symantec Norton Antivirus with Backup=9.0.6.1000
Symantec Client Security=2.0.3_build_9.0.3.1000-mr3
Symantec Norton Antivirus with Backup=9.0.2
Symantec Norton Antivirus with Backup=10.0.2.2011
Symantec Norton Antivirus with Backup=10.0.2.2010
Symantec Client Security=3.0.1.1000
Symantec Norton Personal Firewall<=2006_9.1.1.7
Symantec Client Security=2.0.4
Symantec Norton Antivirus with Backup=10.0
Symantec Norton Antivirus with Backup=10.0.1.1000
Symantec Norton Antivirus with Backup=10.1.401
Symantec Client Security=3.1.0.401
Symantec Client Security=3.0.2.2002
Symantec Client Security=3.0.1.1008
Symantec Norton Antivirus with Backup=9.0.1.1.1000
Symantec Norton System Works=2006
Symantec Client Security=2.0.5_build_1100
Symantec Client Security=3.0.2.2011
Symantec Norton Antivirus with Backup=9.0.5.1100
Symantec Client Security=2.0.4-mr4_build1000
Symantec Norton Personal Firewall=2006_9.1.0.33
Symantec Client Security=3.0.2
Symantec Client Security=3.1.396
Symantec Norton Antivirus with Backup=10.1.394
Symantec Norton Antivirus with Backup=10.0.2.2001
Symantec Norton Antivirus with Backup=9.0.1
Symantec Client Security=2.0
Symantec Norton Antivirus with Backup=9.0.1.1000
Symantec Client Security=2.0.5_build_1100_mp1-mr5
Symantec Norton Antivirus with Backup=10.0.1.1007
Symantec Client Security=2.0.5
Symantec Norton Antivirus with Backup=10.0.2.2020
Symantec Client Security=3.0.1.1001
Symantec Client Security=3.0.2.2001
Symantec Norton antispam=2005
Symantec Norton Antivirus with Backup=10.1.396
Symantec Norton Antivirus with Backup=9.0.4
Symantec Norton Antivirus with Backup=2006
Symantec Client Security=2.0-build_9.0.0.338
Symantec Norton Antivirus with Backup=10.1.4
Symantec Norton Antivirus with Backup=9.0.0.338
Symantec Norton Personal Firewall=2005
Symantec Client Security=2.0
Symantec Client Security=2.0.3
Symantec Norton Personal Firewall=2006
Symantec Client Security=3.1.401
Symantec Norton Antivirus with Backup=10.0.2.2000
Symantec Client Security=3.0.0.359
Symantec Norton Internet Security=2006
Symantec Client Security=3.1.400
Symantec Client Security=3.0.2.2010
Symantec Client Security=2.0_scf_7.1
Symantec Client Security=3.1
Symantec Norton Antivirus with Backup=2005
Symantec Client Security=3.1.0.396
Symantec Client Security=3.0.2.2000
Symantec Client Security=3.1.394
Symantec Norton Internet Security=2005
Symantec Norton Antivirus with Backup=10.0.2.2021
Symantec Norton Antivirus with Backup=9.0
Symantec Norton Antivirus with Backup=3.0
Symantec Client Security=3.0.1.1007
Symantec Client Security=2.0.2
Symantec Norton Antivirus with Backup=9.0.5
Symantec Client Security=2.0_stm_build_9.0.0.338
Symantec Norton Antivirus with Backup=10.0.1.1008
Symantec Client Security=2.0.1
Symantec Norton Antivirus with Backup=10.1.4.4010
Symantec Norton Antivirus with Backup=10.0.2.2002
Symantec Client Security=2.0.2_build_9.0.2.1000-mr2

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2007-1476?

    CVE-2007-1476 is classified as a high severity vulnerability due to its ability to cause a denial of service by crashing the system.

  • How do I fix CVE-2007-1476?

    To fix CVE-2007-1476, it is recommended to update to the latest version of the affected Symantec products that have patched this vulnerability.

  • Which versions of Symantec products are affected by CVE-2007-1476?

    Affected versions of Symantec products include Norton Personal Firewall 2006 and several versions of Norton Antivirus and Client Security up to 10.1.x.

  • What is the impact of CVE-2007-1476 on affected systems?

    The impact of CVE-2007-1476 on affected systems is a potential denial of service, leading to unexpected crashes.

  • Who can exploit CVE-2007-1476?

    Local users can exploit CVE-2007-1476 by sending specially crafted data to the SymTDI driver.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203