CVE-CVE-2003-1310 | UNKNOWN Severity | CVEDatabase.com

Description

The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local users to gain privileges by overwriting memory locations via certain control codes (aka "Device Driver Attack").

CVSS Metrics

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Access Vector: local
Access Cmplx: low
Auth: none
Confidentiality: partial
Integrity: partial
Availability: partial
Weaknesses: NVD-CWE-Other

Metadata

Primary Vendor: SYMANTEC
Published: 12/31/2003
Last Modified: 4/3/2025
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

symantec : norton_antivirussymantec : norton_antivirus

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD