6 matches found
CVE-2022-49553
CVE-2022-49553 is resolved in the Linux kernel: the NTFS driver code path fs/ntfs3 now validates the NTFS BOOT sectors_per_clusters field. If the field is > 0x80, it is treated as a shift value and the driver ensures the shift value is not too large for the NTFS max cluster size (2 MB). If too...
PT-2025-8486 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, specifically in the fs/ntfs3 module. The issue arises when the NTFS BOOT sectors per clusters field has a value greater than 0x80...
CVE-2021-31727
Incorrect access control in zam64.sys, zam32.sys in MalwareFox AntiMalware 2.74.0.150 where IOCTL's 0x80002014, 0x80002018 expose unrestricted disk read/write capabilities respectively. A non-privileged process can open a handle to .\ZemanaAntiMalware, register with the driver using IOCTL...
Angelfire: CIA’ Undetectable Implants Infect Windows Boot Sector
By Uzair Amir WikiLeaks suffered a cyber attack earlier today, but that couldnt stop the whistleblowing platform This is a post from HackRead.com Read the original post: Angelfire: CIA Undetectable Implants Infect Windows Boot Sector...
AngelFire: CIA Malware Infects System Boot Sector to Hack Windows PCs
A team of hackers at the CIA, the Central Intelligence Agency, allegedly used a Windows hacking tool against its targets to gain persistent remote access. As part of its Vault 7 leaks, WikiLeaks today revealed details about a new implant developed by the CIA, dubbed AngelFire, to target computers...
Symantec: Boot Sector Malware In Vogue
HED: Symantec: Boot Sector Malware Back In Style DEK: Malware writers are turning to boot record malware to infect systems – a throwback to earlier forms of malware. What’s old is new again. This time it’s boot sector malware – fashionable around the turn of the Millenium – that’s making a...