234 matches found
IT-Grundschutz M4.341: Integritätsschutz unter Windows Vista (Windows)
IT-Grundschutz M4.341: Integritätsschutz unter Windows VistaWin. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.94246 Diese Prüfung bezieht sich auf die 12...
IPD (Integrity Protection Driver) Local Exploit
No description provided by source. / ipd-dos.c Copyright c 2002-2004 By Next Generation Security S.L. All rights reserved Compiles with: cl ipd-dos.c Madrid, August 2004 / include windows.h define MYNULL 0x01 typedef DWORD zwopensectionTYPEDWORD Handle, DWORD mask, DWORD oa; int mainint argc, cha...
Debian Security Advisory DSA 1271-1 (openafs)
The remote host is missing an update to openafs announced via advisory DSA 1271-1. A design error has been identified in the OpenAFS, a cross-platform distributed filesystem included with Debian. OpenAFS historically has enabled setuid filesystem support for the local cell. However, with its...
Authorization
Macrovision InstallAnywhere Enterprise before 8.0.1 uses the InstallScript.iapxml configuration file without integrity protection to verify authorization for installing an application, which allows local users to perform unauthorized installations by removing the 1 password or 2 serial number...
Debian DSA-1271-1 : openafs - design error
A design error has been identified in the OpenAFS, a cross-platform distributed filesystem included with Debian. OpenAFS historically has enabled setuid filesystem support for the local cell. However, with its existing protocol, OpenAFS can only use encryption, and therefore integrity protection,...
[SECURITY] [DSA 1271-1] New openafs packages fix remote privilege escalation bug
------------------------------------------------------------------------ Debian Security Advisory DSA-1271-1 [email protected] http://www.debian.org/security/ Noah Meyerhans March 20, 2007 - ------------------------------------------------------------------------ Package : openafs Vulnerability...
DSA-1271-1 openafs - design error
Bulletin has no description...
CVE-2006-3786
Symantec pcAnywhere 12.5 uses weak integrity protection for .cif aka caller or CallerID files, which allows local users to generate a custom .cif file and modify the superuser flag...
CVE-2006-3786
Symantec pcAnywhere 12.5 is affected by CVE-2006-3786 due to weak integrity protection for .cif (CallerID) files, enabling local users to craft a custom .cif file and modify the superuser flag. The concrete impact is local privilege manipulation. Exploitation status is not provided in the connect...
CVE-2002-2126
restrictEnabled in Integrity Protection Driver IPD 1.2 delays driver installation for 20 minutes, which allows local users to insert malicious code by setting system clock to an earlier time...
CVE-2002-2127
Integrity Protection Driver IPD 1.2 and earlier blocks access to \Device\PhysicalMemory by its name, which could allow local privileged processes to overwrite kernel memory by accessing the device through a symlink...
CVE-2002-2127
The CVE-2002-2127 entry concerns Integrity Protection Driver (IPD) versions 1.2 and earlier. The vulnerability arises from IPD blocking access to \Device\PhysicalMemory by name, but an attacker could abuse a symlink to access the device and cause a local privileged process to overwrite kernel mem...
CVE-2003-1246
CVE-2003-1246 affects the Integrity Protection Driver (IPD) versions 1.2 and 1.3. The vulnerability is in NtCreateSymbolicLinkObject within ntdll.dll, allowing a local attacker to create and overwrite arbitrary files under boot/system path via a symlink attack on \winnt\system32\drivers using the...
CVE-2002-2126
IPD 1.2 (Integrity Protection Driver) contains a vulnerability in restrictEnabled where driver installation is delayed by 20 minutes. This timing window lets a local user set the system clock back and insert malicious code during installation. Affected: IPD 1.2; root cause: clock-based delay in i...
CVE-2003-1246
NtCreateSymbolicLinkObject in ntdll.dll in Integrity Protection Driver IPD 1.2 and 1.3 allows local users to create and overwrite arbitrary files via a symlink attack on \winnt\system32\drivers using the subst command...
CVE-2003-1233
Pedestal Software Integrity Protection Driver IPD 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel by using the NtCreateSymbolicLinkObject function to create a symbolic link to 1 \Device\PhysicalMemory or 2 to a drive letter...
CVE-2003-1233
Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier is affected. The root cause is the ability to create a symbolic link via NtCreateSymbolicLinkObject to access sensitive kernel resources, specifically to \Device\PhysicalMemory or via a drive letter created with subst. This bypas...
CVE-2005-0039
Certain configurations of IPsec, when using Encapsulating Security Payload ESP in tunnel mode, integrity protection at a higher layer, or Authentication Header AH, allow remote attackers to decrypt IPSec communications by modifying the outer packet in ways that cause plaintext data from the inner...
NISCC Vulnerability Advisory IPSEC - 004033
Abstract: Three attacks that apply to certain configurations of IPsec have been identified. These configurations use Encapsulating Security Payload ESP in tunnel mode with confidentiality only, or with integrity protection being provided by a higher layer protocol. Some configurations using AH to...
IPsec configurations may be vulnerable to information disclosure
Overview The IPsec Encapsulating Security Payload protocol used in tunneling mode may be vulnerable to multiple attacks when confidentiality mode is used without integrity protection, or in certain cases where integrity protection is provided by higher-level protocols. Description The IP Security...