CVE-2014-4974

The ESET Personal Firewall NDIS filter EpFwNdis.sys kernel mode driver, aka Personal Firewall module before Build 1212 20140609, as used in multiple ESET products 5.0 through 7.0, allows local users to obtain sensitive information from kernel memory via crafted IOCTL calls...

Memory corruption

The ESET Personal Firewall NDIS filter EpFwNdis.sys kernel mode driver, aka Personal Firewall module before Build 1212 20140609, as used in multiple ESET products 5.0 through 7.0, allows local users to obtain sensitive information from kernel memory via crafted IOCTL calls...

CVE-2014-4974

Vulnerability summary (CVE-2014-4974): The ESET Personal Firewall NDIS filter driver (EpFwNdis.sys) in multi-VM/host products (kernel module used in ESET 5.0–7.0) is vulnerable to local IOCTL-based memory leakage. The issue affects EpFwNdis.sys built before 1212 (20140609); crafted IOCTL calls ca...

CVE-2014-4974

The ESET Personal Firewall NDIS filter EpFwNdis.sys kernel mode driver, aka Personal Firewall module before Build 1212 20140609, as used in multiple ESET products 5.0 through 7.0, allows local users to obtain sensitive information from kernel memory via crafted IOCTL calls...

VMWare vmx86.sys Arbitrary Kernel Read

Vulnerability Details Affected Vendor: VMWare Affected Product: Workstation Affected Version: 10.0.0.40273 Platform: Microsoft Windows XP SP3 x86, Microsoft Windows Server 2003 SP2 x86, Microsoft Windows 7 SP1 x86 CWE Classification: CWE-20: Improper Input Validation Impact: Arbitrary Read,...

CVE-2014-4973

The ESET Personal Firewall NDIS filter EpFwNdis.sys driver in the Firewall Module Build 1183 20140214 and earlier in ESET Smart Security and ESET Endpoint Security products 5.0 through 7.0 allows local users to gain privileges via a crafted argument to a 0x830020CC IOCTL call...

Code injection

The ESET Personal Firewall NDIS filter EpFwNdis.sys driver in the Firewall Module Build 1183 20140214 and earlier in ESET Smart Security and ESET Endpoint Security products 5.0 through 7.0 allows local users to gain privileges via a crafted argument to a 0x830020CC IOCTL call...

Immunity Canvas: ESET_EPFWNDIS

Name| ESETEpFwNDIS ---|--- CVE| CVE-2014-4973 Exploit Pack| CANVAS Description| EpFwNDIS.sys Trusted Value Vulnerability Notes| Repeatability: Infinite Notes: This module exploits a vulnerability on the ESET Personal Firewall NDIS filter EpFwNdis.sys driver. The Firewall Module Build 1183 2014021...

CVE-2014-4973

The CVE-2014-4973 issue affects the EpFwNdis.sys driver (ESET Personal Firewall NDIS filter) in ESET Smart Security/Endpoint Security 5.0–7.0 (Firewall Module Build 1183, 20140214) and earlier. The vulnerability is a trusted-value condition exploitable via IOCTL 0x830020CC with a crafted input bu...

CVE-2013-2597

Stack-based buffer overflow in the acdbioctl function in audioacdb.c in the acdb audio driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to gain privileges via an application that...

CVE-2013-2597

Stack-based buffer overflow in the acdbioctl function in audioacdb.c in the acdb audio driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to gain privileges via an application that...

Heap overflow

Heap-based buffer overflow in the PavTPK.sys kernel mode driver of Panda Security 2014 products before hft131306s24r1 allows local users to gain privileges via a crafted argument to a 0x222008 IOCTL call...

CVE-2014-5307

CVE-2014-5307 describes a heap-based buffer overflow in the PavTPK.sys kernel-mode driver used by Panda Security 2014 products. An attacker local to the system could gain SYSTEM privileges by sending a crafted argument to IOCTL 0x222008. The vulnerability affects Panda Security 2014 products prio...

CVE-2014-3434

Buffer overflow in the sysplant driver in Symantec Endpoint Protection SEP Client 11.x and 12.x before 12.1 RU4 MP1b, and Small Business Edition before SEP 12.1, allows local users to execute arbitrary code via a long argument to a 0x00222084 IOCTL call...

CVE-2014-3434

Buffer overflow in the sysplant driver in Symantec Endpoint Protection SEP Client 11.x and 12.x before 12.1 RU4 MP1b, and Small Business Edition before SEP 12.1, allows local users to execute arbitrary code via a long argument to a 0x00222084 IOCTL call...

CVE-2014-4971

Microsoft Windows XP SP3 does not validate addresses in certain IRP handler routines, which allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted address in an IOCTL call, related to 1 the MQAC.sys driver in the MQ Access Control subsystem...

Memory corruption

Microsoft Windows XP SP3 does not validate addresses in certain IRP handler routines, which allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted address in an IOCTL call, related to 1 the MQAC.sys driver in the MQ Access Control subsystem...

CVE-2014-4971

CVE-2014-4971 affects Microsoft Windows XP SP3 and relates to two drivers: MQAC.sys in the MQ Access Control subsystem and BthPan.sys in Bluetooth PAN. The vulnerability arises because certain IRP/IOCTL handling does not validate addresses, enabling local attackers to write to arbitrary memory lo...

CVE-2014-4971

Microsoft Windows XP SP3 does not validate addresses in certain IRP handler routines, which allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted address in an IOCTL call, related to 1 the MQAC.sys driver in the MQ Access Control subsystem...

Microsoft XP SP3 MQAC.sys - Arbitrary Write Privilege Escalation

No description provided by source. Title: Microsoft XP SP3 MQAC.sys Arbitrary Write Privilege Escalation Advisory ID: KL-001-2014-003 Publication Date: 2014.07.18 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2014-003.txt 1. Vulnerability Details Affected Vendor: Microsof...