cpe:/a:norman:norman_virus_control:5.82 CVE-2007-4648 2007-08-31T19:17:00.000-04:00 2017-07-28T21:33:04.863-04:00 7.2 LOCAL LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2007-09-04T10:22:00.000-04:00 ALLOWS_ADMIN_ACCESS SECTRACK 1018636 BUGTRAQ 20070830 [48bits] Advisory : Multiple vulnerabilities in Norman NVC 5.82 driver BID 25499 SREASON 3087 MISC http://www.48bits.com/exploits/nvc.rar XF norman-nvcoaft-privilege-escalation(36373) The nvcoaft51 driver in Norman Virus Control (NVC) 5.82 uses weak permissions (unrestricted write access) for the NvcOa device, which allows local users to gain privileges by (1) triggering a buffer overflow in a kernel pool via a string argument to ioctl 0xBF67201C; or by (2) sending a crafted KEVENT structure through ioctl 0xBF672028 to overwrite arbitrary memory locations.