CVE-2006-4855

Exp

The \Device\SymEvent driver in Symantec Norton Personal Firewall 2006 9.1.0.33, and other versions of Norton Personal Firewall, Internet Security, AntiVirus, SystemWorks, Symantec Client Security SCS 1.x, 2.x, 3.0, and 3.1, Symantec AntiVirus Corporate Edition SAVCE 8.x, 9.x, 10.0, and 10.1, Symantec pcAnywhere 11.5 only, and Symantec Host, allows local users to cause a denial of service (system crash) via invalid data, as demonstrated by calling DeviceIoControl to send the data.

Published: 2006-09-19 Last update: 2026-04-16 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2006-4855 is rated Exploit Available (52.5/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 0.28%). 2 public exploit reference(s) are indexed (Exploit-DB). Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2006-4855

EDB-ID Source Kind Published Link
28588 exploit_db edb 2006-09-15 Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2006-4855

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-04-12 0.40% 0.28% -0.12%
2 2026-03-26 0.25% 0.40% +0.15%
3 2025-03-19 0.25%

Full EPSS history (6 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2006-4855

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
4.9 2.0 MEDIUM
AV:L/AC:L/Au:N/C:N/I:N/A:C Click to expand
Access vector (AV:L)
Requires local access to the target system.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:N)
No confidentiality impact.
Integrity impact (I:N)
No integrity impact.
Availability impact (A:C)
Complete availability impact.
 3.9 6.9 [email protected]

Weakness enumeration for CVE-2006-4855

Affected software / configurations for CVE-2006-4855

Vendor Product Version Raw CPE
symantec client_security 1.0 cpe:2.3:a:symantec:client_security:1.0:*:*:*:*:*:*:*
symantec client_security 1.0.0_b8.01.9378 cpe:2.3:a:symantec:client_security:1.0.0_b8.01.9378:*:*:*:*:*:*:*
symantec client_security 1.0.1 cpe:2.3:a:symantec:client_security:1.0.1:*:*:*:*:*:*:*
symantec client_security 1.0.1_build_8.01.425a cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.425a:mr1:*:*:*:*:*:*
symantec client_security 1.0.1_build_8.01.429c cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.429c:mr2:*:*:*:*:*:*
symantec client_security 1.0.1_build_8.01.434 cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.434:mr3:*:*:*:*:*:*
symantec client_security 1.0.1_build_8.01.437 cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.437:*:*:*:*:*:*:*
symantec client_security 1.0.1_build_8.01.446 cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.446:mr4:*:*:*:*:*:*
symantec client_security 1.0.1_build_8.01.457 cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.457:mr5:*:*:*:*:*:*
symantec client_security 1.0.1_build_8.01.460 cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.460:mr6:*:*:*:*:*:*
symantec client_security 1.0.1_build_8.01.464 cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.464:mr7:*:*:*:*:*:*
symantec client_security 1.0.1_build_8.01.471 cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.471:mr8:*:*:*:*:*:*
symantec client_security 1.0.1_build_8.01.501 cpe:2.3:a:symantec:client_security:1.0.1_build_8.01.501:mr9:*:*:*:*:*:*
symantec client_security 1.0_build_8.01.9374 cpe:2.3:a:symantec:client_security:1.0_build_8.01.9374:*:*:*:*:*:*:*
symantec client_security 1.1 cpe:2.3:a:symantec:client_security:1.1:*:*:*:*:*:*:*
symantec client_security 1.1.1 cpe:2.3:a:symantec:client_security:1.1.1:*:*:*:*:*:*:*
symantec client_security 1.1.1_build_393 cpe:2.3:a:symantec:client_security:1.1.1_build_393:*:*:*:*:*:*:*
symantec client_security 1.1.1_mr1_build_8.1.1.314a cpe:2.3:a:symantec:client_security:1.1.1_mr1_build_8.1.1.314a:*:*:*:*:*:*:*
symantec client_security 1.1.1_mr2_build_8.1.1.319 cpe:2.3:a:symantec:client_security:1.1.1_mr2_build_8.1.1.319:*:*:*:*:*:*:*
symantec client_security 1.1.1_mr3_build_8.1.1.323 cpe:2.3:a:symantec:client_security:1.1.1_mr3_build_8.1.1.323:*:*:*:*:*:*:*
symantec client_security 1.1.1_mr4_build_8.1.1.329 cpe:2.3:a:symantec:client_security:1.1.1_mr4_build_8.1.1.329:*:*:*:*:*:*:*
symantec client_security 1.1.1_mr5_build_8.1.1.336 cpe:2.3:a:symantec:client_security:1.1.1_mr5_build_8.1.1.336:*:*:*:*:*:*:*
symantec client_security 1.1.1_mr6_b8.1.1.266 cpe:2.3:a:symantec:client_security:1.1.1_mr6_b8.1.1.266:*:*:*:*:*:*:*
symantec client_security 1.1_stm_b8.1.0.825a cpe:2.3:a:symantec:client_security:1.1_stm_b8.1.0.825a:*:*:*:*:*:*:*
symantec client_security 2.0 cpe:2.3:a:symantec:client_security:2.0:*:*:*:*:*:*:*
symantec client_security 2.0.1_build_9.0.1.1000 cpe:2.3:a:symantec:client_security:2.0.1_build_9.0.1.1000:mr1:*:*:*:*:*:*
symantec client_security 2.0.2_build_9.0.2.1000 cpe:2.3:a:symantec:client_security:2.0.2_build_9.0.2.1000:mr2:*:*:*:*:*:*
symantec client_security 2.0.3_build_9.0.3.1000 cpe:2.3:a:symantec:client_security:2.0.3_build_9.0.3.1000:mr3:*:*:*:*:*:*
symantec client_security 2.0.5_build_1100 cpe:2.3:a:symantec:client_security:2.0.5_build_1100:*:*:*:*:*:*:*
symantec client_security 2.0_scf_7.1 cpe:2.3:a:symantec:client_security:2.0_scf_7.1:*:*:*:*:*:*:*
symantec client_security 2.0_stm_build_9.0.0.338 cpe:2.3:a:symantec:client_security:2.0_stm_build_9.0.0.338:*:*:*:*:*:*:*
symantec client_security 3.0 cpe:2.3:a:symantec:client_security:3.0:*:*:*:*:*:*:*
symantec client_security 3.1 cpe:2.3:a:symantec:client_security:3.1:*:*:*:*:*:*:*
symantec host_ids cpe:2.3:a:symantec:host_ids:*:*:*:*:*:*:*:*
symantec norton_antivirus 2.1 cpe:2.3:a:symantec:norton_antivirus:2.1:*:ms_exchange:*:*:*:*:*
symantec norton_antivirus 8.0 cpe:2.3:a:symantec:norton_antivirus:8.0:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.0.1 cpe:2.3:a:symantec:norton_antivirus:8.0.1:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.0.1.425a cpe:2.3:a:symantec:norton_antivirus:8.0.1.425a:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.0.1.425c cpe:2.3:a:symantec:norton_antivirus:8.0.1.425c:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.0.1.501 cpe:2.3:a:symantec:norton_antivirus:8.0.1.501:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.0.1.9374 cpe:2.3:a:symantec:norton_antivirus:8.0.1.9374:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.0.1.9378 cpe:2.3:a:symantec:norton_antivirus:8.0.1.9378:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.1 cpe:2.3:a:symantec:norton_antivirus:8.1:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.1.0.825a cpe:2.3:a:symantec:norton_antivirus:8.1.0.825a:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.1.1 cpe:2.3:a:symantec:norton_antivirus:8.1.1:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.1.1.319 cpe:2.3:a:symantec:norton_antivirus:8.1.1.319:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.1.1.323 cpe:2.3:a:symantec:norton_antivirus:8.1.1.323:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.1.1.329 cpe:2.3:a:symantec:norton_antivirus:8.1.1.329:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.1.1.366 cpe:2.3:a:symantec:norton_antivirus:8.1.1.366:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.1.1.377 cpe:2.3:a:symantec:norton_antivirus:8.1.1.377:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.1.1_build8.1.1.314a cpe:2.3:a:symantec:norton_antivirus:8.1.1_build8.1.1.314a:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.1.1_build393 cpe:2.3:a:symantec:norton_antivirus:8.1.1_build393:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.01.434 cpe:2.3:a:symantec:norton_antivirus:8.01.434:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.01.437 cpe:2.3:a:symantec:norton_antivirus:8.01.437:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.01.446 cpe:2.3:a:symantec:norton_antivirus:8.01.446:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.01.457 cpe:2.3:a:symantec:norton_antivirus:8.01.457:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.01.460 cpe:2.3:a:symantec:norton_antivirus:8.01.460:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.01.464 cpe:2.3:a:symantec:norton_antivirus:8.01.464:*:corporate:*:*:*:*:*
symantec norton_antivirus 8.01.471 cpe:2.3:a:symantec:norton_antivirus:8.01.471:*:corporate:*:*:*:*:*
symantec norton_antivirus 9.0 cpe:2.3:a:symantec:norton_antivirus:9.0:*:corporate:*:*:*:*:*
symantec norton_antivirus 9.0.0.338 cpe:2.3:a:symantec:norton_antivirus:9.0.0.338:*:corporate:*:*:*:*:*
symantec norton_antivirus 9.0.1.1.1000 cpe:2.3:a:symantec:norton_antivirus:9.0.1.1.1000:*:corporate:*:*:*:*:*
symantec norton_antivirus 9.0.2.1000 cpe:2.3:a:symantec:norton_antivirus:9.0.2.1000:*:corporate:*:*:*:*:*
symantec norton_antivirus 9.0.3.1000 cpe:2.3:a:symantec:norton_antivirus:9.0.3.1000:*:corporate:*:*:*:*:*
symantec norton_antivirus 9.0.4 cpe:2.3:a:symantec:norton_antivirus:9.0.4:*:corporate:*:*:*:*:*
symantec norton_antivirus 9.0.5 cpe:2.3:a:symantec:norton_antivirus:9.0.5:*:corporate:*:*:*:*:*
symantec norton_antivirus 9.0.5.1100 cpe:2.3:a:symantec:norton_antivirus:9.0.5.1100:*:corporate:*:*:*:*:*
symantec norton_antivirus 10.0 cpe:2.3:a:symantec:norton_antivirus:10.0:*:corporate:*:*:*:*:*
symantec norton_antivirus 10.0.2.2000 cpe:2.3:a:symantec:norton_antivirus:10.0.2.2000:*:corporate:*:*:*:*:*
symantec norton_antivirus 10.0.2.2001 cpe:2.3:a:symantec:norton_antivirus:10.0.2.2001:*:corporate:*:*:*:*:*
symantec norton_antivirus 10.0.2.2002 cpe:2.3:a:symantec:norton_antivirus:10.0.2.2002:*:corporate:*:*:*:*:*
symantec norton_antivirus 10.0.2.2010 cpe:2.3:a:symantec:norton_antivirus:10.0.2.2010:*:corporate:*:*:*:*:*
symantec norton_antivirus 10.0.2.2011 cpe:2.3:a:symantec:norton_antivirus:10.0.2.2011:*:corporate:*:*:*:*:*
symantec norton_antivirus 10.0.2.2020 cpe:2.3:a:symantec:norton_antivirus:10.0.2.2020:*:corporate:*:*:*:*:*
symantec norton_antivirus 10.0.2.2021 cpe:2.3:a:symantec:norton_antivirus:10.0.2.2021:*:corporate:*:*:*:*:*
symantec norton_antivirus 10.1 cpe:2.3:a:symantec:norton_antivirus:10.1:*:corporate:*:*:*:*:*
symantec norton_antivirus 2003 cpe:2.3:a:symantec:norton_antivirus:2003:*:*:*:*:*:*:*
symantec norton_antivirus 2003 cpe:2.3:a:symantec:norton_antivirus:2003:*:professional:*:*:*:*:*
symantec norton_antivirus 2004 cpe:2.3:a:symantec:norton_antivirus:2004:*:professional:*:*:*:*:*
symantec norton_antivirus 2005 cpe:2.3:a:symantec:norton_antivirus:2005:*:*:*:*:*:*:*

References for CVE-2006-4855

URL Tags
http://secunia.com/advisories/21938 Vendor Advisory
http://securityreason.com/securityalert/1591
http://securityresponse.symantec.com/avcenter/security/Content/2006.09.20a.html
http://securitytracker.com/id?1016889
http://securitytracker.com/id?1016892
http://securitytracker.com/id?1016893
http://securitytracker.com/id?1016894
http://securitytracker.com/id?1016895
http://securitytracker.com/id?1016896
http://securitytracker.com/id?1016897
http://securitytracker.com/id?1016898
http://www.matousec.com/info/advisories/Norton-Insufficient-validation-of-SymEvent-driver-input-buffer.php Vendor Advisory
http://www.securityfocus.com/archive/1/446111/100/0/threaded
http://www.securityfocus.com/bid/20051 Exploit
http://www.vupen.com/english/advisories/2006/3636 Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/28960
cvelogic Threat Intelligence