3 matches found
Lenovo Rescue and Recovery tvtumon.sys Filename Handling Local Overflow
The version of Lenovo Rescue and Recovery monitor driver running on the remote host is affected by a heap overflow condition. A local attacker may exploit this to elevate privileges to SYSTEM level. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid34432;...
CVE-2008-4589
CVE-2008-4589 concerns a heap-based buffer overflow in the Lenovo Rescue and Recovery module tvtumin.sys (kernel driver) affecting version 4.20, including 4.20.0511 and 4.20.0512. The vulnerability allows a local attacker to execute arbitrary code by providing a long file name, enabling privilege...
CVE-2008-4589
Heap-based buffer overflow in the tvtumin.sys kernel driver in Lenovo Rescue and Recovery 4.20, including 4.20.0511 and 4.20.0512, allows local users to execute arbitrary code via a long file name...