EUVD-2008-1150

Malware in sbrugna...

CVE-2017-12840

CVE-2017-12840 describes a kernel-driver (DLMFENC.sys) included with DESLock+ client v4.8.16 and earlier that suffers a local heap-based buffer overflow when handling IOCTL 0x0FA4204. The vulnerability arises from failing to allocate enough memory for a user-supplied string, which is copied into ...

DESlock+ <= 3.2.6 DLMFENC.sys Local Kernel ring0 link list zero PoC

No description provided by source. / deslock-list-zero.c Copyright c 2008 by [email protected] DESlock+ = 3.2.6 local kernel ring0 link list zero POC by mu-b - Fri 21 Dec 2007 - Tested on: DLMFENC.sys 1.0.0.26 - Private Source Code -DO NOT DISTRIBUTE - http://www.digit-labs.org/ -- Digit-Labs...

DESlock+ <= 3.2.7 - Local Kernel Overflow PoC

No description provided by source. / deslock-overflow.c Copyright c 2008 by [email protected] DESlock+ = 3.2.7 local kernel overflow POC by mu-b - Sat 23 Feb 2008 - Tested on: DLMFENC.sys 1.0.0.28 http://www.cctmark.gov.uk/CCTMAwards/DataEncryptionSystemsLtd/tabid/103/Default.aspx - I wonder wh...

CVE-2008-4363

DLMFENC.sys 1.0.0.28 in DESlock+ 3.2.7 allows local users to cause a denial of service system crash or potentially execute arbitrary code via a certain DLMFENCIOCTL request to \.\DLKPFSDDevice that overwrites a pointer, probably related to use of the ProbeForRead function when ProbeForWrite was...

CVE-2008-4363

DLMFENC.sys 1.0.0.28 in DESlock+ 3.2.7 allows local users to cause a denial of service system crash or potentially execute arbitrary code via a certain DLMFENCIOCTL request to \.\DLKPFSDDevice that overwrites a pointer, probably related to use of the ProbeForRead function when ProbeForWrite was...

CVE-2008-4363

CVE-2008-4363 affects DESlock+ 3.2.7 with DLMFENC.sys 1.0.0.28. A vulnerability exists in a DLMFENC_IOCTL to the device path \./DLKPFSD_Device that likely overwrites a pointer due to a misused ProbeForRead/ProbeForWrite pairing. The consequence is local denial of service (system crash) and potent...

DESlock+ &lt;= 3.2.7 (probe read) Local Kernel Denial of Service PoC

No description provided by source. / deslock-probe-read.c Copyright c 2008 by [email protected] DESlock+ = 3.2.7 local kernel DoS POC by mu-b - Sat 19 Jul 2008 - Tested on: DLMFENC.sys 1.0.0.28 call to ProbeForRead with a user-definable address that is eventually overwritten should have been...

DESlock+ 3.2.7 - Local Kernel Overflow (PoC)

DESlock+ 3.2.7 - Local Kernel Overflow PoC / deslock-overflow.c Copyright c 2008 by DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xC001D00D define DLMFENCBUZSZ 0x1000 define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum; void argARGSIZE0x20;...

DESlock+ 3.2.7 - probe read Local Kernel Denial of Service (PoC)

DESlock+ 3.2.7 - probe read Local Kernel Denial of Service PoC / deslock-probe-read.c Copyright c 2008 by DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xC001D00D define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum; void argARGSIZE0x20; ;...

DESlock+ <= 3.2.7 Local Kernel Overflow PoC

Exploit for unknown platform in category dos / poc =========================================== DESlock+ DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xC001D00D define DLMFENCBUZSZ 0x1000 define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum;...

DESlock+ &lt; 3.2.7 - Local Kernel Race Condition Denial of Service (PoC)

/ deslock-probe-race.c Copyright c 2008 by DESlock+ include include define DLMFENCIOCTL 0x0FA4204C define DLMFENCFLAG 0xDEADBEEF define ARGSIZEa a-sizeof int2/sizeof void struct ioctlreq int flag; int reqnum; void argARGSIZE0x20; ; void hammerthread void zpage BOOL result; printf " child using pa...

Design/Logic Flaw

DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service system crash via a certain ZEROMEM DLMFENCIOCTL request to \.\DLKPFSDDevice, aka the "ring0 link list zero" vulnerability...

CVE-2008-1139

DESlock+ 3.2.6 and earlier, when DLMFENC.sys 1.0.0.26 and DLMFDISK.sys 1.2.0.27 are present, allows local users to gain privileges via a certain DLMFENCIOCTL request to \.\DLKPFSDDevice that overwrites a pointer, aka the "ring0 link list zero SYSTEM" vulnerability...

Design/Logic Flaw

DESlock+ 3.2.6 and earlier, when DLMFENC.sys 1.0.0.26 and DLMFDISK.sys 1.2.0.27 are present, allows local users to gain privileges via a certain DLMFENCIOCTL request to \.\DLKPFSDDevice that overwrites a pointer, aka the "ring0 link list zero SYSTEM" vulnerability...

CVE-2008-1141

Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service kernel memory consumption via a series of DLMFENCIOCTL requests to \.\DLKPFSDDevice that allocate "link list structures."...

Memory corruption

Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service kernel memory consumption via a series of DLMFENCIOCTL requests to \.\DLKPFSDDevice that allocate "link list structures."...

CVE-2008-1138

DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service system crash via a certain ZEROMEM DLMFENCIOCTL request to \.\DLKPFSDDevice, aka the "ring0 link list zero" vulnerability...

CVE-2008-1138

CVE-2008-1138 affects DESlock+ (DESlock+) up to version 3.2.6, where the kernel driver DLMFENC.sys (1.0.0.26) is vulnerable to a local denial-of-service via a ZERO_MEM DLMFENC_IOCTL to \.�DLKPFSD_Device, known as the “ring0 link list zero” issue. Impact is a system crash from local privilege-exec...

CVE-2008-1141

Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service kernel memory consumption via a series of DLMFENCIOCTL requests to \.\DLKPFSDDevice that allocate "link list structures."...