5 matches found
CVE-2015-6923
The ndvbs module in VBox Communications Satellite Express Protocol 2.3.17.3 allows local users to write to arbitrary physical memory locations and gain privileges via a 0x00000ffd ioctl call...
CVE-2015-6923
CVE-2015-6923 affects VBox Communications Satellite Express Protocol 2.3.17.3. The ndvbs module permits a local attacker to write arbitrary physical memory via IOCTL 0x00000ffd, enabling privilege escalation by overwriting HalDispatchTable function pointers (arbitrary code execution). Public advi...
VBox Satellite Express 2.3.17.3 - Arbitrary Write Vulnerability
A vulnerability within the ndvbs module allows an attacker to inject memory they control into an arbitrary location they define. This vulnerability can be used to overwrite function pointers in HalDispatchTable resulting in an elevation of privilege. suffers from code execution, and local file...
VBox Satellite Express 2.3.17.3 - Arbitrary Write
KL-001-2015-005 : VBox Satellite Express Arbitrary Write Privilege Escalation Title: VBox Satellite Express Arbitrary Write Privilege Escalation Advisory ID: KL-001-2015-005 Publication Date: 2015.09.16 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2015-005.txt 1...
VBox Satellite Express Arbitrary Write Privilege Escalation
Vulnerability Details Affected Vendor: VBox Communications Affected Product: Satellite Express Protocol Affected Version: 2.3.17.3 Platform: Microsoft Windows XP SP3, Microsoft Windows 7 x86 CWE Classification: CWE-123: Write-what-where condition Impact: Arbitrary Code Execution Attack vector:...