Symantec SYMTDI.SYS IOCTL Handler Privilege Escalation Exploit

This module exploits a vulnerability in Symantec products when the 0x83022323 function is invoked with a specially crafted parameter. The IOCTL 0x83022323 handler in the SYMTDI.SYS device driver in Symantec products allows local users to overwrite memory and execute arbitrary code via malformed Interrupt Request Packet (Irp) parameters to obtain system privileges.
Exploit type: 
Vulnerabilty ID: 
Released Date: 
Wednesday, August 29, 2007 - 19:00