3 matches found
CVE-2008-3158
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/novellclientnwfs.rb 2025-02-06 03:13:39+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:08:30+00:00| seen|...
Novell Client 4.91 SP4 nwfs.sys Local Privilege Escalation
This module exploits a flaw in the nwfs.sys driver to overwrite data in kernel space. The corruption occurs while handling ioctl requests with code 0x1438BB, where a 0x00000009 dword is written to an arbitrary address. An entry within the HalDispatchTable is overwritten in order to execute...
CVE-2008-3158
The CVE-2008-3158 entry concerns the NWFS.SYS driver in Novell Client for Windows 4.91 SP4. A local privilege escalation exists in the nwfs.sys kernel driver when handling IOCTL requests (notably 0x1438BB), where a 0x00000009 dword is written to an arbitrary address, allowing overwriting of a Hal...