matousec.com (site map)

Poll

On Windows Vista I use

  unlimited administrator's account (26.11%)

  limited administrator's account (9.09%)

  common user's account (3.26%)

  nothing (I do not use Vista) (61.54%)

more

results

Advisory 2006-07-15.02

Norton Insufficient protection of Norton service registry keys

Basic information:


Release date: July 15, 2006

Last update: July 26, 2006

Severity:Medium

Character:System crash

Status:Unknown

Testing program: BTP00004P002NF.zip

Description:

Norton insufficiently checks calling standard Windows API functions RegSaveKey, RegRestoreKey and RegDeleteKey. A proper combination of mentioned function calls on registry key 'HKLM\SYSTEM\CurrentControlSet\Services\SNDSrvc' or on key 'HKLM\SYSTEM\CurrentControlSet\Services\SymEvent' causes a system crash due to erroneous implementation of Norton's driver.

Vulnerable software:

Events:

References: