5907 matches found
Windows - CNG.SYS Kernel Security Feature Bypass PoC (MS15-052)
Exploit for windows platform in category local exploits // Source: http://www.binvul.com/viewthread.php?tid=508 // Source: https://twitter.com/NTarakanov/status/598370525132423168 include include include pragma commentlib, "ntdll.lib" int mainint argc, CHAR argv typedef NTSTATUS stdcall...
CVE-2015-4036
Array index error in the tcmvhostmaketpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service memory corruption or possibly have unspecified other impact via a crafted VHOSTSCSISETENDPOINT ioctl call. NOTE: the affected function w...
kernel security and bug fix update
2.6.32-504.16.2 - infiniband core: Prevent integer overflow in ibumemget address arithmetic Doug Ledford 1181173 1179327 CVE-2014-8159 2.6.32-504.16.1 - fs gfs2: Move gfs2filesplicewrite outside of ifdef Robert S Peterson 1198329 1193559 - security keys: close race between key lookup and freeing...
Memory corruption
The mmfslinux kernel module in IBM General Parallel File System GPFS 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 allows local users to cause a denial of service memory corruption via unspecified character-device ioctl calls...
Intel Network Adapter Diagnostic Driver - IOCTL Handling Vulnerability
Exploit for windows platform in category dos / poc / Intel Network Adapter Diagnostic Driver IOCTL Handling Vulnerability Vendor: Intel Product webpage: http://www.intel.com Affected products: Network Adapter Driver for Windows XP Network Adapter Driver for Windows 7 Network Adapter Driver for...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2015-3012)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-3012 advisory. - ttusb-dec: buffer overflow in ioctl Dan Carpenter Orabug: 20673373 CVE-2014-8884 - mm: Fix NULL pointer dereference in madviseMADVWILLNEED suppor...
Intel Network Adapter Diagnostic Driver IOCTL DoS
/ Intel Network Adapter Diagnostic Driver IOCTL Handling Vulnerability Vendor: Intel Product webpage: http://www.intel.com Affected products: Network Adapter Driver for Windows XP Network Adapter Driver for Windows 7 Network Adapter Driver for Windows 8 Network Adapter Driver for Windows 2008/R2...
Intel Network Adapter Diagnostic Driver - IOCTL Handling
Intel Network Adapter Diagnostic Driver - IOCTL Handling / Intel Network Adapter Diagnostic Driver IOCTL Handling Vulnerability Vendor: Intel Product webpage: http://www.intel.com Affected products: Network Adapter Driver for Windows XP Network Adapter Driver for Windows 7 Network Adapter Driver...
SoftSphere DefenseWall Personal Firewall Elevation of Privilege Vulnerability
SoftSphere DefenseWall Personal Firewall is Internet security software from the Czech company Softsphere. SoftSphere DefenseWall Personal Firewall 3.24 suffers from a privilege-raising vulnerability that allows a local user to write data to an arbitrary storage unit with privileges gained by...
Multiple Trend Micro Products tmeext.sys Driver Elevation of Privilege Vulnerabilities
Trend Micro Antivirus Plus, Internet Security and Maximum Security are all antivirus programs from Trend Micro. A security vulnerability exists in the tmeext.sys driver prior to version 2.0.0.1015. A local attacker can exploit this vulnerability by writing to an arbitrary memory location via a...
CVE-2015-1305
McAfee Data Loss Prevention Endpoint DLPe before 9.3.400 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 1 0x00224014 or 2 0x0022c018 IOCTL call...
CVE-2014-9643
K7Sentry.sys in K7 Computing Ultimate Security, Anti-Virus Plus, and Total Security before 14.2.0.253 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x95002570, 0x95002574, 0x95002580, 0x950025a8, 0x950025ac, or 0x950025c8 IOCTL call...
CVE-2014-9642
bdagent.sys in BullGuard Antivirus, Internet Security, Premium Protection, and Online Backup before 15.0.288 allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted 0x0022405c IOCTL call...
CVE-2014-9632
The TDI driver avgtdix.sys in AVG Internet Security before 2013.3495 Hot Fix 18 and 2015.x before 2015.5315 and Protection before 2015.5315 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x830020f8 IOCTL call...
Memory corruption
bdagent.sys in BullGuard Antivirus, Internet Security, Premium Protection, and Online Backup before 15.0.288 allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted 0x0022405c IOCTL call...
CVE-2015-1305
McAfee Data Loss Prevention Endpoint DLPe before 9.3.400 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 1 0x00224014 or 2 0x0022c018 IOCTL call...
CVE-2014-9632
The TDI driver avgtdix.sys in AVG Internet Security before 2013.3495 Hot Fix 18 and 2015.x before 2015.5315 and Protection before 2015.5315 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x830020f8 IOCTL call...
CVE-2014-9641
The tmeext.sys driver before 2.0.0.1015 in Trend Micro Antivirus Plus, Internet Security, and Maximum Security allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x00222400 IOCTL call...
CVE-2014-9643
K7Sentry.sys in K7 Computing Ultimate Security, Anti-Virus Plus, and Total Security before 14.2.0.253 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x95002570, 0x95002574, 0x95002580, 0x950025a8, 0x950025ac, or 0x950025c8 IOCTL call...
CVE-2014-9642
CVE-2014-9642 affects BullGuard products (Antivirus, Internet Security, Premium Protection, Online Backup) via the BdAgent.sys driver. A local privilege-escalation arises from an arbitrary write to memory through crafted IOCTL 0x0022405c, enabling privilege gain. Public sources confirm a local at...