EUVD-2011-3440

Malware in sbrugna...

EUVD-2018-7376

Malware in sbrugna...

GEAR Software Denial of Service Vulnerability

GEAR Software is a suite of CD/DVD burning software from GEAR Software, USA. A denial of service vulnerability exists in the GEARAspiWDM.sys file in GEAR Software products, which arises from the program failing to detect the validity of user-mode memory when performing a write operation to that...

CVE-2018-15499

GEAR Software products that include GEARAspiWDM.sys, 2.2.5.0, allow local users to cause a denial of service Race Condition and BSoD on Windows by not checking that user-mode memory is available right before writing to it. A check is only performed at the beginning of a long subroutine...

CVE-2018-15499

GEAR Software products that include GEARAspiWDM.sys, 2.2.5.0, allow local users to cause a denial of service Race Condition and BSoD on Windows by not checking that user-mode memory is available right before writing to it. A check is only performed at the beginning of a long subroutine...

Race condition

GEAR Software products that include GEARAspiWDM.sys, 2.2.5.0, allow local users to cause a denial of service Race Condition and BSoD on Windows by not checking that user-mode memory is available right before writing to it. A check is only performed at the beginning of a long subroutine...

CVE-2018-15499

CVE-2018-15499 affects GEAR Software products that include GEARAspiWDM.sys (2.2.5.0). The issue is a denial-of-service vulnerability caused by not validating user‑mode memory availability before writing to it; a memory validity check is only performed at the start of a long subroutine. The result...

CVE-2018-15499

GEAR Software products that include GEARAspiWDM.sys, 2.2.5.0, allow local users to cause a denial of service Race Condition and BSoD on Windows by not checking that user-mode memory is available right before writing to it. A check is only performed at the beginning of a long subroutine...

Code injection

GEAR Software CD DVD Filter driver aka GEARAspiWDM.sys, as used in Symantec Backup Exec System Recovery 8.5 and BESR 2010, Symantec System Recovery 2011, Norton 360, and Norton Ghost, allows local users to cause a denial of service system crash via unspecified vectors...

CVE-2011-3477

GEAR Software CD DVD Filter driver aka GEARAspiWDM.sys, as used in Symantec Backup Exec System Recovery 8.5 and BESR 2010, Symantec System Recovery 2011, Norton 360, and Norton Ghost, allows local users to cause a denial of service system crash via unspecified vectors...

CVE-2011-3477

CVE-2011-3477 concerns the GEAR Software CD/DVD Filter driver (GEARAspiWDM.sys) as used in several Symantec products (Backup Exec System Recovery 8.5 and BESR 2010, System Recovery 2011, Norton 360, Norton Ghost). According to the linked records, the vulnerability enables a local attacker to caus...

GEAR Software CD DVD Filter Driver Insecure Method Local Privilege Escalation

The version of GEAR Software's CD DVD Filter kernel driver GEARAspiWDM.sys on the remote host contains an insecure method that allows a local user to make an unlimited number of calls to 'IoAttachDevice' from user-land, thereby enabling him to exploit a local privilege escalation flaw in the...

Gear Software CD DVD Filter driver privilege escalation vulnerability

Overview The Gear Software CD DVD Filter driver contains a privilege escalation vulnerability, which can allow an attacker to gain SYSTEM privileges. Description Gear Software provides a driver called CD DVD Filter, which is provided by GEARAspiWDM.sys. This driver is used by multiple CD/DVD...

CVE-2008-3636

Integer overflow in the IopfCompleteRequest API in the kernel in Microsoft Windows 2000, XP, Server 2003, and Vista allows context-dependent attackers to gain privileges. NOTE: this issue was originally reported for GEARAspiWDM.sys 2.0.7.5 in Gear Software CD DVD Filter driver before 4.001.7, as...