SecuMania Security Portal - RETIRED: Symantec Norton Personal Firewall SuiteOwners Registry Key Security Bypass Vulnerability

Members Login

Rss Feeds

Get our latest content via RSS feeds.

Report a Vulnerability

Report a vulnerability or exploit that you have found to SecuMania.
vul[at]SecuMania.org

I cant say I feel sorry for him, stupid spammer got what he deserved. We all know how it feels to op...

Advanced Image Hosting (AIH) 2.1 Remote ...

thanks

Realsecure CGI Attack Subversion Vulnera...

hi webmaster,plz help me to find any information about account harvesting and traversal path attack ...

INDEXU <= 5.0.1 (admin_template_path) Re...

Hello Webmasters My name is Nikolai. I am making an organization for the protection internet users f...

Advanced Image Hosting (AIH) 2.1 Remote ...

good job you are the best . mgharba talmout :d

Online Rental Property Script <= 4.5 (pi...

Hello, The reported problem has been fixed. Regards, Catalina Danila Online Rent Customer Supp...

netOffice Dwins Authentication Bypass Vu...

Not Vulnerable: Luis Wang netOffice Dwins 1.3.1 visit website http://netofficedwins .sourceforge.ne...

BM Classifieds <= 20080409 Multiple SQL ...

Current version of script corrected. Security patch available to registered users in the user foru...

Nukedit 4.9.x Remote Create Admin Exploi...

But i think to protect the password is not needed because it's not used in the SQL-Execute statement...

Nukedit 4.9.x Remote Create Admin Exploi...

you may find that your hotfix doesnt stop the password field from having SQL injected into it. This ...

Packet Storm

Visits today:	636
Visits yesterday:	952
Visits month:	9613
Visits total:	466992
Pages total:	8752793

RETIRED: Symantec Norton Personal Firewall SuiteOwners Registry Key Security Bypass Vulnerability

Friday, 18 August 2006

RETIRED: Symantec Norton Personal Firewall SuiteOwners Registry Key Security Bypass Vulnerability
Class:	Access Validation Error
CVE:	CVE-2006-4266
Remote:	No
Local:	Yes
Published:	Aug 18 2006 12:00AM
Updated:	Jul 13 2007 06:36PM
Credit:	David Matousek is credited with the discovery of this vulnerability.
Vulnerable:	Symantec Norton Personal Firewall 2006
Not Vulnerable:
Description:	Symantec Norton Personal Firewall is prone to a security-bypass vulnerability, allowing an attacker to potentially bypass security measures that are used to prevent modification of registry keys that are related to the affected software. An attacker may exploit this vulnerability to bypass Norton's registry protection mechanism and modify the 'SuiteOwners' registry entry to load an arbitrary library file. This will likely lead to further attacks. The individual who discovered this issue claims to have tested it on Norton Personal Firewall 2006 version 9.1.0.33. Other versions could also be affected. Norton Internet Security products that include the vulnerable application may also be affected. RETIRED: This BID is being retired; further investigation indicates that the application is not vulnerable to this issue.
Exploit:	Currently SecuMania is not aware of any exploits for this issue. If you are aware of more recent information, please mail us at: vul[at]SecuMania.org.
Solution:	Currently SecuMania is not aware of any solution for this issue. If you are aware of more recent information, please mail us at: vul[at]SecuMania.org.
References:	Symantec Homepage (Symantec) Norton DLL faking via 'SuiteOwners' protection bypass Vulnerability (David Matousek)
Source:	Securityfocus