2 matches found
CVE-2007-5761
CVE-2007-5761 concerns Motorola netOctopus, where the NantSys driver (nantsys.sys) exposes a device interface (\.\NantSys) writable by all local users. The driver can read/write arbitrary CPU MSRs, and manipulating SYSENTER_EIP_MSR enables arbitrary kernel-mode code execution or system crashes. A...
iDefense Security Advisory 01.07.08: Motorola netOctopus Agent MSR Write Privilege Escalation Vulnerability
iDefense Security Advisory 01.07.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jan 07, 2008 I. BACKGROUND Motorola netOctopus is an asset management agent. It is used to deploy software, monitor performance, and configure client machines from a central administrative console. More...