15 matches found
EUVD-2007-5412
Malware in sbrugna...
EUVD-2008-5970
Malware in sbrugna...
CVE-2024-30377
G DATA Total Security Scan Server Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability to execute low-privileged code on the target...
G Data 安全漏洞
G Data is an antivirus software from the German company G Data. A security vulnerability exists in G Data that stems from improper privilege assignment in auto-start task handling, which could allow a local attacker to elevate privileges and execute arbitrary code as SYSTEM...
The vulnerability of the recovery mechanism of G Data antivirus software allows attackers to enhance their privileges.
The vulnerability of the file recovery mechanism of the G Data antivirus software is related to incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow a malicious actor, operating remotely, to increase their privileges...
G-Data Security Breach
G Data is an antivirus software from the German company G Data. A security vulnerability exists in versions prior to G-Data 25.5.9.25, which originates from the use of symbolic links that may abuse the infected file recovery mechanism to enable arbitrary writes, resulting in elevated privileges...
CVE-2012-1443
The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal aka Cat QuickHeal 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Emsisoft Anti-Malware 5.1.0....
Design/Logic Flaw
The GDTdiIcpt.sys driver in G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values, which allows local users to cause a denial of service system crash or gain privileges via a crafted IOCTL request, as demonstrated by executi...
CVE-2008-6000
The GDTdiIcpt.sys driver in G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values, which allows local users to cause a denial of service system crash or gain privileges via a crafted IOCTL request, as demonstrated by executi...
CVE-2008-6000
The CVE-2008-6000 entry concerns the GDTdiIcpt.sys driver used by G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008. A crafted IOCTL input to IOCTL 0x8317001c causes the driver to populate kernel registers in a way that can trigger a denial of service (system crash) or allow privil...
Buffer overflow
Buffer overflow in a certain ActiveX control in ScanObjectBrowser.DLL in G DATA Antivirus 2007 might allow remote attackers to execute arbitrary code via unspecified parameters to the SelectPath function. NOTE: this issue might not cross privilege boundaries in most environments, since it is not...
CVE-2007-5436
Buffer overflow in a certain ActiveX control in ScanObjectBrowser.DLL in G DATA Antivirus 2007 might allow remote attackers to execute arbitrary code via unspecified parameters to the SelectPath function. NOTE: this issue might not cross privilege boundaries in most environments, since it is not...
CVE-2007-5436
The CVE-2007-5436 entry concerns G DATA Antivirus 2007. A buffer overflow in the ActiveX control ScanObjectBrowser.DLL, specifically in the SelectPath function, could allow remote code execution via unspecified parameters. The issue is described as not crossing privilege boundaries in many enviro...
CVE-2007-5436
Buffer overflow in a certain ActiveX control in ScanObjectBrowser.DLL in G DATA Antivirus 2007 might allow remote attackers to execute arbitrary code via unspecified parameters to the SelectPath function. NOTE: this issue might not cross privilege boundaries in most environments, since it is not...
[ELEYTT] 10PAZDZIERNIK2007
Eleytt Research www.eleytt.com Overview: ==================== Michal Bucko, Eleytt, www.eleytt.com/michal.bucko Tomasz Polis, www.eleytt.com Credit: ==================== Michal Bucko, Eleytt, www.eleytt.com/michal.bucko Vulnerability Table =================== 1. CA Erwin Datatype Standards File...