Lucene search

[email protected]CVE-2006-7160

HistoryMar 07, 2007 - 8:19 p.m.

CVE-2006-7160

2007-03-0720:19:00

CWE-20

[email protected]

web.nvd.nist.gov

outpost firewall pro

sandbox.sys

driver

local

denial of service

cve-2006-7160

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

The Sandbox.sys driver in Outpost Firewall PRO 4.0, and possibly earlier versions, does not validate arguments to hooked SSDT functions, which allows local users to cause a denial of service (crash) via invalid arguments to the (1) NtAssignProcessToJobObject, (2) NtCreateKey, (3) NtCreateThread, (4) NtDeleteFile, (5) NtLoadDriver, (6) NtOpenProcess, (7) NtProtectVirtualMemory, (8) NtReplaceKey, (9) NtTerminateProcess, (10) NtTerminateThread, (11) NtUnloadDriver, and (12) NtWriteVirtualMemory functions.

Affected configurations

NVD

Node

agnitumoutpost_firewallRange≤4.0pro

CPENameOperatorVersion
agnitum:outpost_firewallagnitum outpost firewallle4.0

CPE	Name	Operator	Version
agnitum:outpost_firewall	agnitum outpost firewall	le	4.0

References

secunia.com/advisories/22913

securityreason.com/securityalert/2376

www.matousec.com/info/advisories/Outpost-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.php

www.securityfocus.com/archive/1/451672/100/0/threaded

www.securityfocus.com/bid/21097

www.vupen.com/english/advisories/2006/4537

exchange.xforce.ibmcloud.com/vulnerabilities/30312

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2006-7160

nvd2 cvelist2 prion1 cve1