Details of VAR-200607-0265

ID

VAR-200607-0265

CVE

CVE-2006-3725

TITLE

Norton Personal Firewall Service disruption in (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2006-002830

DESCRIPTION

Norton Personal Firewall 2006 9.1.0.33 allows local users to cause a denial of service (crash) via certain RegSaveKey, RegRestoreKey and RegDeleteKey operations on the (1) HKLM\SYSTEM\CurrentControlSet\Services\SNDSrvc and (2) HKLM\SYSTEM\CurrentControlSet\Services\SymEvent registry keys. Microsoft Windows is prone to a denial-of-service vulnerability. This issue occurs when a program calls certain API calls for manipulating Windows registry keys. This may crash the affected computer. NOTE: This BID has been revised (July 3, 2007); the issue was originally thought to be a vulnerability in Symantec Norton Personal Firewall, but further investigation reveals a problem in an underlying OS API. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. Norton Firewall does not properly check calls to the standard Windows API functions RegSaveKey, RegRestoreKey, and RegDeleteKey. In the registry key HKLM\SYSTEM\CurrentControlSet\Services\SNDSrvc or HKLM\SYSTEM\CurrentControlSet\Services\SymEvent, combined calls to the above functions will trigger errors in the implementation of the Norton driver, resulting in a system crash

Trust: 2.25

sources: NVD: CVE-2006-3725 // JVNDB: JVNDB-2006-002830 // BID: 18995 // BID: 87170 // VULHUB: VHN-19833

AFFECTED PRODUCTS

vendor:	symantec	model:	norton personal firewall	scope:	eq	version:	2006_9.1.0.33	Trust: 1.6
vendor:	symantec	model:	norton personal firewall	scope:	eq	version:	2006 9.1.0.33	Trust: 0.8
vendor:	microsoft	model:	windows xp professional	scope:	-	version:	-	Trust: 0.3
vendor:	microsoft	model:	windows xp	scope:	eq	version:	0	Trust: 0.3
vendor:	microsoft	model:	windows professional	scope:	eq	version:	2000	Trust: 0.3
vendor:	symantec	model:	norton personal firewall	scope:	eq	version:	20069.1.33	Trust: 0.3

sources: BID: 18995 // BID: 87170 // JVNDB: JVNDB-2006-002830 // CNNVD: CNNVD-200607-288 // NVD: CVE-2006-3725

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2006-3725
value:	LOW
Trust: 1.0
NVD:	CVE-2006-3725
value:	LOW
Trust: 0.8
CNNVD:	CNNVD-200607-288
value:	LOW
Trust: 0.6
VULHUB:	VHN-19833
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2006-3725
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:N/I:N/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-19833
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:N/I:N/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-19833 // JVNDB: JVNDB-2006-002830 // CNNVD: CNNVD-200607-288 // NVD: CVE-2006-3725

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2006-3725

THREAT TYPE

local

Trust: 1.2

sources: BID: 18995 // BID: 87170 // CNNVD: CNNVD-200607-288

TYPE

access verification error

Trust: 0.6

sources: CNNVD: CNNVD-200607-288

CONFIGURATIONS

sources: JVNDB: JVNDB-2006-002830

PATCH

title:

Norton Personal Firewall

url:

http://us.norton.com/now/en/pu/images/Promotions/2012/5804/ch2.html?undefined&s_tnt=48837:19:0

Trust: 0.8

sources: JVNDB: JVNDB-2006-002830

EXTERNAL IDS

db:	NVD	id:	CVE-2006-3725	Trust: 2.8
db:	BID	id:	18995	Trust: 2.3
db:	SREASON	id:	1241	Trust: 2.0
db:	JVNDB	id:	JVNDB-2006-002830	Trust: 0.8
db:	CNNVD	id:	CNNVD-200607-288	Trust: 0.7
db:	BUGTRAQ	id:	20060715 NORTON INSUFFICIENT PROTECTION OF NORTON SERVICE REGISTRY KEYS	Trust: 0.6
db:	XF	id:	27764	Trust: 0.6
db:	BID	id:	87170	Trust: 0.4
db:	VULHUB	id:	VHN-19833	Trust: 0.1

sources: VULHUB: VHN-19833 // BID: 18995 // BID: 87170 // JVNDB: JVNDB-2006-002830 // CNNVD: CNNVD-200607-288 // NVD: CVE-2006-3725

REFERENCES

url:	http://www.securityfocus.com/bid/18995	Trust: 2.0
url:	http://www.matousec.com/info/advisories/norton-insufficient-protection-of-norton-service-registry-keys.php	Trust: 2.0
url:	http://securityreason.com/securityalert/1241	Trust: 2.0
url:	http://www.securityfocus.com/archive/1/440110/100/0/threaded	Trust: 1.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/27764	Trust: 1.1
url:	http://www.securityfocus.com/archive/1/archive/1/440110/100/0/threaded	Trust: 0.9
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-3725	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-3725	Trust: 0.8
url:	http://xforce.iss.net/xforce/xfdb/27764	Trust: 0.6
url:	http://www.microsoft.com/	Trust: 0.3

sources: VULHUB: VHN-19833 // BID: 18995 // BID: 87170 // JVNDB: JVNDB-2006-002830 // CNNVD: CNNVD-200607-288 // NVD: CVE-2006-3725

CREDITS

David Matousek david@matousec.com

Trust: 0.6

sources: CNNVD: CNNVD-200607-288

SOURCES

db:	VULHUB	id:	VHN-19833
db:	BID	id:	18995
db:	BID	id:	87170
db:	JVNDB	id:	JVNDB-2006-002830
db:	CNNVD	id:	CNNVD-200607-288
db:	NVD	id:	CVE-2006-3725

LAST UPDATE DATE

2025-04-03T22:36:08.658000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-19833	date:	2018-10-17T00:00:00
db:	BID	id:	18995	date:	2007-07-04T23:07:00
db:	BID	id:	87170	date:	2006-07-21T00:00:00
db:	JVNDB	id:	JVNDB-2006-002830	date:	2012-12-20T00:00:00
db:	CNNVD	id:	CNNVD-200607-288	date:	2006-08-28T00:00:00
db:	NVD	id:	CVE-2006-3725	date:	2025-04-03T01:03:51.193

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-19833	date:	2006-07-21T00:00:00
db:	BID	id:	18995	date:	2006-07-15T00:00:00
db:	BID	id:	87170	date:	2006-07-21T00:00:00
db:	JVNDB	id:	JVNDB-2006-002830	date:	2012-12-20T00:00:00
db:	CNNVD	id:	CNNVD-200607-288	date:	2006-07-21T00:00:00
db:	NVD	id:	CVE-2006-3725	date:	2006-07-21T14:03:00