Design/Logic Flaw

XNU 1228.9.59 and earlier on Apple Mac OS X 10.5.6 and earlier does not properly restrict interaction between user space and the HFS IOCTL handler, which allows local users to overwrite kernel memory and gain privileges by attaching an HFS+ disk image and performing certain steps involving...

CVE-2009-1235

XNU 1228.9.59 and earlier on Apple Mac OS X 10.5.6 and earlier does not properly restrict interaction between user space and the HFS IOCTL handler, which allows local users to overwrite kernel memory and gain privileges by attaching an HFS+ disk image and performing certain steps involving...

趋势科技Internet Security tmactmon.sys驱动本地权限提升漏洞

UGTRAQ ID: 34304 CVECAN ID: CVE-2009-0686 趋势科技的Internet Security是一套可适合保护家庭用户多台计算机的网络安全产品。 Internet Security的tmactmon.sys驱动的IOCTL处理器对IOCTL调用使用了METHODNEITHER通讯方式，但没有正确地验证Irp对象相关的缓冲区数据，这允许本地用户获得SYSTEM权限。 Trend Micro Internet Security Pro 2009 Trend Micro Internet Security Pro 2008 Trend Micro Intern...

Cross site request forgery (csrf)

The TrendMicro Activity Monitor Module tmactmon.sys 2.52.0.1002 in Trend Micro Internet Pro 2008 and 2009, and Security Pro 2008 and 2009, allows local users to gain privileges via a crafted IRP in a METHODNEITHER IOCTL request to \Device\tmactmon that overwrites memory...

kernel: skfp_ioctl inverted logic flaw

The skfpioctl function in drivers/net/skfp/skfddi.c in the Linux kernel before 2.6.28.6 permits SKFPCLRSTATS requests only when the CAPNETADMIN capability is absent, instead of when this capability is present, which allows local users to reset the driver statistics, related to an "inverted logic"...

Trend Micro Internet Security Pro privilege escalation

tmactmon.sys driver IOCTL processing privilege escalation...

Trend Micro Internet Security Pro 2009 Priviliege Escalation PoC

No description provided by source. Trend Micro Internet Security Pro 2009 tmactmon.sys Priviliege Escalation PoC. by b1@ckeYe The vulnerability is caused due to the IOCTL handler of the "tmactmon.sys" driver improperly processing user space parameters. This exploit execute arbitrary code in...

Trend Micro Internet Security Pro 2009 Priviliege Escalation PoC

Exploit for unknown platform in category local exploits ================================================================ Trend Micro Internet Security Pro 2009 Priviliege Escalation PoC ================================================================ Trend Micro Internet Security Pro 2009...

Trend Micro Internet Security Pro 2009 - Priviliege Escalation

Trend Micro Internet Security Pro 2009 tmactmon.sys Priviliege Escalation PoC. by b1@ckeYe The vulnerability is caused due to the IOCTL handler of the "tmactmon.sys" driver improperly processing user space parameters. This exploit execute arbitrary code in kernel space via a specially crafted...

[Suspected Spam][PT-2009-11] SlySoft Multiple Products ElbyCDIO.sys Denial of Service

---------------------------------------------------------------------- PT-2009-11 Positive Technologies Security Advisory SlySoft Multiple Products ElbyCDIO.sys Denial of Service ---------------------------------------------------------------------- --- Affected Software SlySoft AnyDVD version...

KLA10064 DoS vulnerability in SlySoft

An improper buffer validation vulnerability was found in SlySoft products. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited locally at a point related to ElbyCDIO.sys via a specially designed IOCTL call. Original advisories CloneC...

mks_vir杀毒软件mksmonen.sys驱动IOCTL请求本地权限提升漏洞

BUGTRAQ ID: 34039 MKS—vir是一款来自波兰的功能强大的反病毒软件。 MKS—vir的mksmonen.sys设备驱动没有正确地验证传送给IOCTL的用户提供地址，所有的IOCTL都生成为METHODNEITHER： ... .text:000113A7 @@ioctl0x95FE0007: .text:000113A7 cmp ebp+InputBufferLength, 4 .text:000113AB jnb short @@bufferlengthok .text:000113AD .text:000113AD @@invaliddevicerequest:...

CentOS Update for kernel CESA-2007:1049 centos3 i386

Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2007:1049 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

CentOS Update for kernel CESA-2007:1049 centos3 x86_64

Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2007:1049 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CVE-2009-0449

Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call...

Buffer overflow

Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call...

CVE-2009-0449

Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call...

Multiple Kaspersky Lab applications privilege escalation

Access to kernel memory regions from usermode on IOCTL processing...

Design/Logic Flaw

The GDTdiIcpt.sys driver in G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values, which allows local users to cause a denial of service system crash or gain privileges via a crafted IOCTL request, as demonstrated by executi...

CVE-2008-6000

The GDTdiIcpt.sys driver in G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values, which allows local users to cause a denial of service system crash or gain privileges via a crafted IOCTL request, as demonstrated by executi...