Unrated severityNVD Advisory· Published Oct 10, 2006· Updated Jun 16, 2026

CVE-2006-4927

Description

The (a) NAVENG (NAVENG.SYS) and (b) NAVEX15 (NAVEX15.SYS) device drivers 20061.3.0.12 and later, as used in Symantec AntiVirus and security products, allow local users to gain privileges by overwriting critical system addresses using a crafted Irp to the IOCTL functions (1) 0x222AD3, (2) 0x222AD7, and (3) 0x222ADB.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Symantec/Naveng Driver
cpe:2.3:a:symantec:naveng_driver:*:*:*:*:*:*:*:*
Symantec/Navex15 Driver
cpe:2.3:a:symantec:navex15_driver:*:*:*:*:*:*:*:*
Symantec/NAVENGllm-fuzzy
Range: >= 20061.3.0.12
Symantec/NAVEX15llm-fuzzy
Range: >= 20061.3.0.12

Patches

Vulnerability mechanics

References

secunia.com/advisories/22288nvdPatchVendor Advisory
www.idefense.com/intelligence/vulnerabilities/display.phpnvdPatchVendor Advisory
www.symantec.com/avcenter/security/Content/2006.10.05a.htmlnvdPatch
securitytracker.com/idnvdExploitPatch
securitytracker.com/idnvdExploitPatch
securitytracker.com/idnvdExploitPatch
securitytracker.com/idnvdExploitPatch
securitytracker.com/idnvdExploitPatch
securitytracker.com/idnvdExploitPatch
securitytracker.com/idnvdExploitPatch
securitytracker.com/idnvdExploitPatch
securitytracker.com/idnvdExploitPatch
www.securityfocus.com/bid/20360nvdExploitPatch
www.kb.cert.org/vuls/id/946820nvdUS Government Resource
securityreason.com/securityalert/1690nvd
www.securityfocus.com/archive/1/447849/100/0/threadednvd
www.vupen.com/english/advisories/2006/3928nvd
exchange.xforce.ibmcloud.com/vulnerabilities/29360nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000