RETIRED: Symantec Norton Personal Firewall SuiteOwners Registry Key Security Bypass Vulnerability

RETIRED: Symantec Norton Personal Firewall SuiteOwners Registry Key Security Bypass Vulnerability

Symantec Norton Personal Firewall is prone to a security-bypass vulnerability, allowing an attacker to potentially bypass security measures that are used to prevent modification of registry keys that are related to the affected software.

An attacker may exploit this vulnerability to bypass Norton's registry protection mechanism and modify the 'SuiteOwners' registry entry to load an arbitrary library file. This will likely lead to further attacks.

The individual who discovered this issue claims to have tested it on Norton Personal Firewall 2006 version 9.1.0.33. Other versions could also be affected. Norton Internet Security products that include the vulnerable application may also be affected.

RETIRED: This BID is being retired; further investigation indicates that the application is not vulnerable to this issue.