Lucene search
K

1770 matches found

Tenable Nessus
Tenable Nessus
added 2008/10/14 12:0 a.m.48 views

Debian DSA-1653-1 : linux-2.6 - denial of service/privilege escalation

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-6716 Joe Jin reported a local denial of service vulnerability that allows...

7.2CVSS6.1AI score0.03209EPSS
Exploits7References15
seebug.org
seebug.org
added 2008/09/22 12:0 a.m.17 views

G DATA产品GDTdiIcpt.sys驱动内存破坏漏洞

BUGTRAQ ID: 31246 G DATA是德国的一家杀毒软件厂商。 G DATA产品所使用的GDTdiIcpt.sys内核驱动在处理IOCTL请求时存在错误,本地攻击者可以利用这个漏洞导致拒绝服务或执行任意内核级代码。 GDTdiIcpt.sys驱动未经验证便接受了用户提供的IOCTL 0x8317001c调用,这样就可以用任意值填充不同的内核寄存器。之后这些寄存器值被用作了内核函数的参数,因此特制参数可能完全控制Windows内核的执行流。 以下是GDTdiIcpt.sys的反汇编(Windows Vista 32位版): ... .text:00012510 cmp...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/08/16 12:0 a.m.19 views

CA HIPS Kmxfw.sys Driver Multiple Remote Vulnerabilities

The 'kmxfw.sys' kernel driver included with CA's Host-Based Intrusion Prevention System HIPS or a related security product installed on the remote host is affected by multiple vulnerabilities. - By sending specially crafted IOCTL requests, it may be possible for a local attacker to crash the syst...

7.2CVSS6AI score0.02025EPSS
Exploits1References6
exploitpack
exploitpack
added 2008/08/10 12:0 a.m.108 views

Sun xVM VirtualBox 1.6.4 - Privilege Escalation (PoC)

Sun xVM VirtualBox 1.6.4 - Privilege Escalation PoC -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory Information Title: Sun xVM VirtualBox Privilege...

7.2CVSS0.3AI score0.06932EPSS
Exploits8
Exploit DB
Exploit DB
added 2008/08/10 12:0 a.m.79 views

Sun xVM VirtualBox < 1.6.4 - Privilege Escalation (PoC)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory Information Title: Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory ID: CORE-2008-0716...

8.8CVSS8.2AI score0.06932EPSS
Exploits8
securityvulns
securityvulns
added 2008/08/07 12:0 a.m.62 views

CORE-2008-0716 - Sun xVM VirtualBox Privilege Escalation Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory Information Title: Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory ID: CORE-2008-0716...

7.2CVSS0.5AI score0.06932EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2008/08/05 12:0 a.m.62 views

Sun xVM VirtualBox < 1.6.4 Local Privilege Escalation

The remote host contains a version of Sun xVM VirtualBox, an open source virtualization platform, before 1.6.4. Such versions reportedly include a kernel driver, 'VBoxDrv.sys', that allows a local user to open the device '.\VBoxDrv' and issue IOCTLs with a buffering method of 'METHODNEITHER'...

8.8CVSS7AI score0.06932EPSS
Exploits8References4
Packet Storm
Packet Storm
added 2008/08/04 12:0 a.m.70 views

Core Security Technologies Advisory 2008.0716

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory Information Title: Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory ID: CORE-2008-0716...

7.2CVSS0.5AI score0.06932EPSS
Exploits8
Core Security
Core Security
added 2008/08/04 12:0 a.m.38 views

Sun xVM VirtualBox Privilege Escalation Vulnerability

1. Advisory Information Title: Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory ID: CORE-2008-0716 Advisory URL:http://www.coresecurity.com/core-labs/advisories/virtualbox-privilege-escalation-vulnerability Date published: 2008-08-04 Date of last update: 2008-08-04 Vendors contacted...

8.8CVSS7.6AI score0.06932EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2008/07/11 12:0 a.m.43 views

Novell Client nwfs.sys Local Privilege Escalation

The file 'NWFS.SYS' included with the Novell Client software and installed on the remote host is reportedly affected by a local privilege escalation vulnerability that allows a client to send a request to the kernel driver using crafted pointer and then execute code with kernel privileges. C...

6.9CVSS5.6AI score0.05481EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2008/07/11 12:0 a.m.55 views

Deterministic Network Extender 'dne2000.sys' Local Privilege Escalation

A kernel driver from Deterministic Network Extender DNE is installed on the remote host. DNE is typically packaged with third-party applications and is reportedly included with : - SafeNet HighAssurance Remote and SoftRemote - Cisco VPN Client - Blue Coat Systems WinProxy The installed version of...

7.2CVSS6.1AI score0.01129EPSS
Exploits0References3
myhack58
myhack58
added 2008/05/23 12:0 a.m.19 views

Home patrol v1. 1/1. 0 kernel driver denial of service and local mention the right vulnerability-vulnerability warning-the black bar safety net

Author: MJ0011 Source: MJ0011 kernel driver Institute Home patrol v1. 1/1. 0 kernel driver there is a serious vulnerability Installed the home patrol v1. 1v1. 0the machines, any permissions the user can cause the system to blue screen BSOD, and cause a denial of service attack Combined with our...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2008/04/01 12:0 a.m.40 views

[TKADV2008-002] avast! 4.7 aavmker4.sys Kernel Memory Corruption

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: avast! 4.7 aavmker4.sys Kernel Memory Corruption Advisory ID: TKADV2008-002 Revision: 1.0 Release Date: 2008/03/30 Last Modified: 2008/03/30 Date Reported: 2008/03/16 Author: Tobias Klein tk at trapkit.de Affected Software: avast! 4.7...

0.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/03/13 12:0 a.m.18 views

Panda Security cpoint.sys Kernel Memory Corruption

A vulnerability in the 'Cpoint.sys' kernel driver shipped with Panda Antivirus+ Firewall 2008 and Panda Internet Security 2008 fails to sufficiently validate IOCTL requests before processing them. A local attacker may be able to leverage this issue to execute arbitrary code with kernel privileges...

7.2CVSS5.8AI score0.01125EPSS
Exploits1References5
seebug.org
seebug.org
added 2008/03/11 12:0 a.m.21 views

熊猫卫士2008 CPoint.sys内存破坏漏洞

BUGTRAQ ID: 28150 熊猫卫士是熊猫系列杀毒软件,支持对多种文件格式进行病毒分析。 多个熊猫系列杀毒软件所捆绑的cpoint.sys内核驱动中处理IOCTL请求的代码存在漏洞,本地攻击者可能利用此漏洞提升权限。 该驱动的0xba002848 IOCTL调用未经充分验证便接受了用户提供的输入,导致越界写入内核内存。 cpoint.sys的反汇编(Windows Vista 32位版): ... .text:00012633 loc12633: .text:00012633 mov edx, 0BA002848h -- 1 .text:00012638 cmp ecx, edx...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2008/03/09 12:0 a.m.41 views

[TKADV2008-001] Panda Internet Security/Antivirus+Firewall 2008 cpoint.sys Kernel Driver Memory Corruption Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: Panda Internet Security/Antivirus+Firewall 2008 cpoint.sys Kernel Driver Memory Corruption Vulnerability Advisory ID: TKADV2008-001 Revision: 1.0 Release Date: 2008/03/08 Last Modified: 2008/03/08 Date Reported: 2008/01/08 Author: Tobias Kle...

0.4AI score
Exploits0
seebug.org
seebug.org
added 2008/01/22 12:0 a.m.46 views

CORE FORCE防火墙和注册模块多个本地内核缓冲区溢出漏洞

BUGTRAQ ID: 27341 CNCAN ID:CNCAN-2008012102 CORE FORCE是一款免费的防火墙应用程序。 CORE FORCE防火墙和注册模块不正确验证用户提供的输入,本地攻击者可以利用漏洞进行拒绝服务攻击或提升特权。 CORE FORCE的防火墙内核驱动可通过IOCTL函数访问,防火墙驱动模块中的四个IOCTL函数使用从用户空间的输入,并没有对输入缓冲区长度进行正确的验证,通过使用特定构建的参数调用任何一个IOCTL,非特权用户可在这个驱动中触发漏洞并导致拒绝服务攻击,可能导致任意特权提升。 Core Security Technologies CORE...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/10/26 12:0 a.m.43 views

Trend Micro Scan Engine Tmxpflt.sys Buffer Overflow

The version of Trend Micro AntiVirus installed on the remote Windows host contains a buffer overflow in its 'Tmxpflt.sys' kernel driver. A local attacker may be able to leverage this issue to execute arbitrary code on the affected system in kernel context. C Tenable Network Security, Inc...

6.6CVSS6.1AI score0.00387EPSS
Exploits1References5
myhack58
myhack58
added 2007/10/11 12:0 a.m.20 views

Illustrated cracked the freezing point reduction 6. 0 method-vulnerability warning-the black bar safety net

Afirst of all the way freezing works. Without the patience of friends can jump directly to the second part to see how to crack the freezing point reduction6.0。) Probably a lot of people have seen online the widely circulated“DeepFreeze freezing principle”of the post, why I would also like to...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2007/08/27 12:0 a.m.34 views

Security vulnerability in BufferZone 2.5

vulnerable software: BufferZone all product version till version 2.5 latest type of vulnerability: DoS, potential privilege escalation I found a vulnerability in BufferZone which allows an unprivileged user and even a malicious software running inside the BufferZone sandbox to crash the system an...

3.4AI score
Exploits0
Rows per page
Query Builder