McAfee Application Control swin. sys kernel driver denial of service vulnerability, CVE-2 0 1 6-1 7 1 5-the vulnerability warning-the black bar safety net

2016-01-14T00:00:00
ID MYHACK58:62201670990
Type myhack58
Reporter 佚名
Modified 2016-01-14T00:00:00

Description

Affected system:

McAfee Application Control 6.2.0 McAfee Application Control 6.1.3 McAfee Application Control 6.1.2 McAfee Application Control 6.1.1 McAfee Application Control 6.1.0 Description:

CVE(CAN) ID: CVE-2 0 1 6-1 7 1 5

McAfee Application Control is a centrally managed whitelisting solution.

In the 3 2-bit Windows platform, McAfee Application Control (MAC) 6.1.0、6.1.1、6.1.2、6.1.3、6.2.0 version of the swin. sys kernel driver that allows a local user through a 7 6 8 system calls cause a denial of service memory corruption and system crash or elevated privileges, trigger at any kernel memory location of the write zero operation.

<*source: McAfee

Links: http://www.zerodayinitiative.com/advisories/ZDI-16-007/ *>

Recommendations:

Manufacturers patch:

McAfee \ ------ The current vendors have released an upgrade patch to fix this security issue, please go to the manufacturers home page download:

https://kc.mcafee.com/corporate/index?page=content&id=SB10145