Lucene search
K

147 matches found

Prion
Prion
added 2012/08/25 9:55 p.m.20 views

Race condition

Race condition in G DATA TotalCare 2010 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler...

6.2CVSS7.2AI score0.00315EPSS
Exploits0References9
Cvelist
Cvelist
added 2012/08/25 9:0 p.m.23 views

CVE-2010-5162

Race condition in G DATA TotalCare 2010 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler...

6.7AI score0.00315EPSS
Exploits0References9
CVE
CVE
added 2012/08/25 9:0 p.m.50 views

CVE-2010-5162

CVE-2010-5162 describes a race condition in G DATA TotalCare 2010 for Windows XP that allows local users to bypass kernel-mode hook handlers via certain user-space memory changes during hook-handler execution (an argument-switch or KHOBE attack). Affected software is G DATA TotalCare 2010; the ro...

6.2CVSS6.9AI score0.00315EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2012/08/25 12:0 a.m.12 views

PT-2012-1374 · G Data · G Data Totalcare

Name of the Vulnerable Software and Affected Versions: G DATA TotalCare version 2010 Description: A race condition in G DATA TotalCare 2010 on Windows XP allows local users to bypass kernel-mode hook handlers and execute dangerous code that would otherwise be blocked by a handler but not blocked ...

6.2CVSS6.9AI score0.00315EPSS
Exploits0References11
NVD
NVD
added 2012/03/21 10:11 a.m.28 views

CVE-2012-1443

The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal aka Cat QuickHeal 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Emsisoft Anti-Malware 5.1.0....

4.3CVSS6.3AI score0.99636EPSS
Exploits0References17
exploitpack
exploitpack
added 2010/11/08 12:0 a.m.13 views

G Data TotalCare 2011 - Local Kernel

G Data TotalCare 2011 - Local Kernel / Exploit Title: G Data TotalCare 2011 0day Local Kernel Exploit Date: 2010-11-08 Author: Nikita Tarakanov CISS Research Team Software Link: http://www.gdata.de/ Version: up to date, version 21.1.0.5, MiniIcpt.sys version 1.0.8.9 Tested on: Win XP SP3 CVE :...

Exploits0
Packet Storm
Packet Storm
added 2010/11/08 12:0 a.m.17 views

G Data TotalCare 2011 Local Kernel Exploit

/ Exploit Title: G Data TotalCare 2011 0day Local Kernel Exploit Date: 2010-11-08 Author: Nikita Tarakanov CISS Research Team Software Link: http://www.gdata.de/ Version: up to date, version 21.1.0.5, MiniIcpt.sys version 1.0.8.9 Tested on: Win XP SP3 CVE : CVE-NO-MATCH Status : Unpatched / inclu...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2010/11/08 12:0 a.m.26 views

G Data TotalCare 2011 - Local Kernel

/ Exploit Title: G Data TotalCare 2011 0day Local Kernel Exploit Date: 2010-11-08 Author: Nikita Tarakanov CISS Research Team Software Link: http://www.gdata.de/ Version: up to date, version 21.1.0.5, MiniIcpt.sys version 1.0.8.9 Tested on: Win XP SP3 CVE : CVE-NO-MATCH Status : Unpatched / inclu...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/11/06 12:0 a.m.18 views

G Data TotalCare 2011 - NtOpenKey Race Condition

G Data TotalCare 2011 - NtOpenKey Race Condition 1.Description: The HookCentre.sys kernel driver distributed with G Data TotalCare 2011 contains a race condition vulnerability in the handling arguments of NtOpenkey function. Exploitation of this issue allows an attacker to crash systemmake infamo...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/11/06 12:0 a.m.33 views

G Data TotalCare 2011 - 'NtOpenKey' Race Condition

1.Description: The HookCentre.sys kernel driver distributed with G Data TotalCare 2011 contains a race condition vulnerability in the handling arguments of NtOpenkey function. Exploitation of this issue allows an attacker to crash systemmake infamous BSoD or gain escalated priviligies. An attacke...

7.4AI score
Exploits0
rdot
rdot
added 2010/10/03 12:0 a.m.17 views

Число новых компьютерных вирусов в 2010 году приближается к 2 миллионам

12:30 17.09.2010 По данным Nielsen Online, 51 % европейцев пользуются социальными сетями, такими как Facebook или Xing. Популярность социальных сетей привлекает кибер-преступников, которые используют их с целью нападения на пользователей. Преступники создают компьютерные вирусы для получения...

0.4AI score
Exploits0
rdot
rdot
added 2010/08/21 12:0 a.m.16 views

49% женщин вообще не используют антивирусные программы

Согласно данным социологического исследования, проведённого компанией G Data Software среди женщин в возрасте до 30 лет, 74% из 500 опрошенных представительниц прекрасного пола не уделяют достаточного внимания обеспечению антивирусной защиты своего ПК. Исследование показало, что только 23%...

0.4AI score
Exploits0
Prion
Prion
added 2009/01/28 3:30 p.m.17 views

Design/Logic Flaw

The GDTdiIcpt.sys driver in G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values, which allows local users to cause a denial of service system crash or gain privileges via a crafted IOCTL request, as demonstrated by executi...

7.2CVSS7AI score0.00578EPSS
Exploits1References5
NVD
NVD
added 2009/01/28 3:30 p.m.19 views

CVE-2008-6000

The GDTdiIcpt.sys driver in G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values, which allows local users to cause a denial of service system crash or gain privileges via a crafted IOCTL request, as demonstrated by executi...

7.2CVSS6.5AI score0.00578EPSS
Exploits1References5
CVE
CVE
added 2009/01/28 3:0 p.m.40 views

CVE-2008-6000

The CVE-2008-6000 entry concerns the GDTdiIcpt.sys driver used by G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008. A crafted IOCTL input to IOCTL 0x8317001c causes the driver to populate kernel registers in a way that can trigger a denial of service (system crash) or allow privil...

7.2CVSS6.7AI score0.00578EPSS
Exploits1References5Affected Software3
Cvelist
Cvelist
added 2009/01/28 3:0 p.m.24 views

CVE-2008-6000

The GDTdiIcpt.sys driver in G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values, which allows local users to cause a denial of service system crash or gain privileges via a crafted IOCTL request, as demonstrated by executi...

6.5AI score0.00578EPSS
Exploits1References5
seebug.org
seebug.org
added 2008/09/22 12:0 a.m.18 views

G DATA产品GDTdiIcpt.sys驱动内存破坏漏洞

BUGTRAQ ID: 31246 G DATA是德国的一家杀毒软件厂商。 G DATA产品所使用的GDTdiIcpt.sys内核驱动在处理IOCTL请求时存在错误,本地攻击者可以利用这个漏洞导致拒绝服务或执行任意内核级代码。 GDTdiIcpt.sys驱动未经验证便接受了用户提供的IOCTL 0x8317001c调用,这样就可以用任意值填充不同的内核寄存器。之后这些寄存器值被用作了内核函数的参数,因此特制参数可能完全控制Windows内核的执行流。 以下是GDTdiIcpt.sys的反汇编(Windows Vista 32位版): ... .text:00012510 cmp...

6.9AI score
Exploits0
NVD
NVD
added 2007/10/13 1:17 a.m.16 views

CVE-2007-5436

Buffer overflow in a certain ActiveX control in ScanObjectBrowser.DLL in G DATA Antivirus 2007 might allow remote attackers to execute arbitrary code via unspecified parameters to the SelectPath function. NOTE: this issue might not cross privilege boundaries in most environments, since it is not...

7.6CVSS7.8AI score0.0495EPSS
Exploits0References5
Prion
Prion
added 2007/10/13 1:17 a.m.14 views

Buffer overflow

Buffer overflow in a certain ActiveX control in ScanObjectBrowser.DLL in G DATA Antivirus 2007 might allow remote attackers to execute arbitrary code via unspecified parameters to the SelectPath function. NOTE: this issue might not cross privilege boundaries in most environments, since it is not...

7.6CVSS8.5AI score0.0495EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2007/10/13 1:0 a.m.35 views

CVE-2007-5436

The CVE-2007-5436 entry concerns G DATA Antivirus 2007. A buffer overflow in the ActiveX control ScanObjectBrowser.DLL, specifically in the SelectPath function, could allow remote code execution via unspecified parameters. The issue is described as not crossing privilege boundaries in many enviro...

7.6CVSS7.8AI score0.0495EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder