Rising Antivirus Drivers Multiple Local Privilege Escalation Vulnerabilities

Rising Antivirus is prone to a local privilege escalation vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

360杀毒和360安全卫士内核驱动多个本地拒绝服务漏洞

BUGTRAQ ID: 39936 360杀毒和360安全卫士都是在中国广泛使用的免费杀毒软件。 360杀毒和360安全卫士所使用的profos.sys和360FkAdv.sys驱动没有正确地验证从用户空间所传送的进程对象指针，本地用户可以通过提交恶意的IOCTL请求导致内核崩溃。 奇虎360 360安全卫士 6.1.5.1010 奇虎360 360杀毒 1.1.0.1096 厂商补丁： 奇虎360 ------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.360.cn/...

CVE-2009-4832

The dlpcrypt.sys kernel driver 0.1.1.27 in DESlock+ 4.0.2 allows local users to gain privileges via a crafted IOCTL 0x80012010 request to the DLPCryptCore device...

Design/Logic Flaw

The dlpcrypt.sys kernel driver 0.1.1.27 in DESlock+ 4.0.2 allows local users to gain privileges via a crafted IOCTL 0x80012010 request to the DLPCryptCore device...

CVE-2009-4832

The dlpcrypt.sys kernel driver 0.1.1.27 in DESlock+ 4.0.2 allows local users to gain privileges via a crafted IOCTL 0x80012010 request to the DLPCryptCore device...

CVE-2009-4832

CVE-2009-4832 affects the dlpcrypt.sys kernel driver (version 0.1.1.27) in DESlock+ 4.0.2. The vulnerability allows local privilege escalation via a crafted IOCTL 0x80012010 sent to the DLPCryptCore device. Documents identify the affected component and the exact IOCTL vector but do not provide ex...

CVE-2010-1591

CVE-2010-1591 concerns Beijing Rising International Rising Antivirus (versions 2008–2010). The issue is improper validation of input to certain IOCTLs, including 0x83003C07, enabling local users to gain privileges via crafted IOCTL requests to the device drivers (HookCont.sys, HookNtos.sys, HOOKR...

CVE-2010-1591

Beijing Rising International Rising Antivirus 2008 through 2010 does not properly validate input to certain IOCTLs, including 0x83003C07, which allows local users to gain privileges via crafted IOCTL requests to the 1 HookCont.sys, 2 HookNtos.sys, 3 HOOKREG.sys, or 4 HookSys.sys device driver; or...

Micropoint Proactive Denfense privilege escalation

User-controlled kernel memory access on IOCTL processing...

CVE-2010-0705

Summary: CVE-2010-0705 affects Avast! Antivirus on Windows, involving the kernel driver aavmker4.sys. The vulnerability arises from improper input validation in IOCTL 0xb2d60030, enabling memory corruption that can cause a denial of service or allow local privilege escalation. Affected products i...

[TKADV2010-003] avast! 4.8 and 5.0 aavmker4.sys Kernel Memory Corruption

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: avast! 4.8 and 5.0 aavmker4.sys Kernel Memory Corruption Advisory ID: TKADV2010-003 Revision: 1.0 Release Date: 2010/02/22 Last Modified: 2010/02/22 Date Reported: 2010/02/01 Author: Tobias Klein tk at trapkit.de Affected Software: avast! 4....

Avast! antiviral applications memory corruption

Memory corruption on IOCTL processing in aavmker4.sys...

KLA10414 ACe vulnerability in Avast! Antivirus

Improper input validation was found in Avast! Antivirus. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed IOCTL request. Original advisories - Related products...

Mandriva Linux Security Advisory : kernel (MDVSA-2010:034)

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an...

Solaris/Open Solaris UCODE_GET_VERSION IOCTL Denial of Service

No description provided by source. / cve-2010-0453.c -- Patroklos Argyroudis, argp at domain census-labs.com Denial of service kernel panic PoC exploit for the UCODEGETVERSION ioctl NULL pointer dereference vulnerability on Solaris/OpenSolaris: http://www.trapkit.de/advisories/TKADV2010-001.txt...

SolarisOpen Solaris UCODE_GET_VERSION IOCTL - Denial of Service

SolarisOpen Solaris UCODEGETVERSION IOCTL - Denial of Service / cve-2010-0453.c -- Patroklos Argyroudis, argp at domain census-labs.com Denial of service kernel panic PoC exploit for the UCODEGETVERSION ioctl NULL pointer dereference vulnerability on Solaris/OpenSolaris:...

Solaris/Open Solaris UCODE_GET_VERSION IOCTL - Denial of Service

/ cve-2010-0453.c -- Patroklos Argyroudis, argp at domain census-labs.com Denial of service kernel panic PoC exploit for the UCODEGETVERSION ioctl NULL pointer dereference vulnerability on Solaris/OpenSolaris: http://www.trapkit.de/advisories/TKADV2010-001.txt...

Sun Solaris CODE_GET_VERSION IOCTL本地拒绝服务漏洞

BUGTRAQ ID: 38016 CVE ID: CVE-2010-0453 Solaris是一款由Sun开发和维护的商业UNIX操作系统。 Solaris的内核中负责处理UCODEGETVERSION IOCTL请求的代码中存在空指针引用漏洞，本地用户可以通过发送特制的IOCTL请求导致拒绝服务。以下是intel/io/ucodedrv.c中的有漏洞代码段： .. static int ucodeioctldevt dev, int cmd, intptrt arg, int mode, credt cr, int rval .. switch cmd case...

kernel: gdth: Prevent negative offsets in ioctl

Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request...

Qihoo 360 Security Guard privilege escalation

IOCTL privilege escalation...