19 matches found
EUVD-2008-5206
Malware in sbrugna...
EUVD-2007-0085
Malware in sbrugna...
Kerio Personal Firewall 4.3 - IPHLPAPI.DLL Local Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21828/info Kerio Personal Firewall is prone to a local privilege-escalation vulnerability. A local attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. A successful exploit cou...
Microsoft Windows Vista 'iphlpapi.dll' Local Kernel Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/32357/info Microsoft Windows Vista is prone to a buffer-overflow vulnerability because of insufficient boundary checks. Local attackers could exploit this issue to cause denial-of-service conditions. Given the nature of...
μTorrent (uTorrent) 2.0.3 - DLL Hijacking
Title: uTorrent =2.0.3 Dll Hijacking Local Exploits By: DrIDE Tested: Windows 7RC Note: These are additional DLL's with unsafe Load Paths Reference: http://www.exploit-db.com/exploits/14726/ If the payload .DLL file is renamed to any of these files and placed in the utorrent.exe directory, the...
CVE-2008-5229
Stack-based buffer overflow in Microsoft Device IO Control in iphlpapi.dll in Microsoft Windows Vista Gold and SP1 allows local users in the Network Configuration Operator group to gain privileges or cause a denial of service system crash via a large invalid PrefixLength to the...
Stack overflow
Stack-based buffer overflow in Microsoft Device IO Control in iphlpapi.dll in Microsoft Windows Vista Gold and SP1 allows local users in the Network Configuration Operator group to gain privileges or cause a denial of service system crash via a large invalid PrefixLength to the...
CVE-2008-5229
Stack-based buffer overflow in Microsoft Device IO Control in iphlpapi.dll in Microsoft Windows Vista Gold and SP1 allows local users in the Network Configuration Operator group to gain privileges or cause a denial of service system crash via a large invalid PrefixLength to the...
CVE-2008-5229
The CVE-2008-5229 issue is a stack-based buffer overflow in Microsoft Device IO Control (iphlpapi.dll) affecting Windows Vista Gold and SP1. An attacker could cause a system crash or gain privileges by supplying a large invalid PrefixLength to CreateIpForwardEntry2 (e.g., via a route add). Affect...
Windows Vista iphlpapi.dll本地内核栈溢出漏洞
BUGTRAQ ID: 32357 Windows Vista是微软发布的最新版本的操作系统。 在使用CreateIpForwardEntry2方式向IPv4路由表添加路由项时,如果对MIBIPFORWARDROW2结构所包含的DestinationPrefix结构中的目标PrefixLength成员传送了大于32的非法值的话,就会破坏内核空间内存,导致随机的蓝屏崩溃。传送的非法值越大,所触发的崩溃就会越快出现。 此外如果使用系统自带的route add命令并在子网掩码中使用了非法值的话,该命令也可以触发相同的缓冲区溢出。 Microsoft Windows Vista Microsof...
Microsoft Windows Vista - iphlpapi.dll Local Kernel Buffer Overflow
Microsoft Windows Vista - iphlpapi.dll Local Kernel Buffer Overflow // source: https://www.securityfocus.com/bid/32357/info // Microsoft Windows Vista is prone to a buffer-overflow vulnerability because of insufficient boundary checks. // Local attackers could exploit this issue to cause...
Microsoft Windows Vista - 'iphlpapi.dll' Local Kernel Buffer Overflow
// source: https://www.securityfocus.com/bid/32357/info // Microsoft Windows Vista is prone to a buffer-overflow vulnerability because of insufficient boundary checks. // Local attackers could exploit this issue to cause denial-of-service conditions. Given the nature of this issue, attackers may...
Design/Logic Flaw
Sunbelt Kerio Personal Firewall SKPF 4.3.268 and 4.3.246, and possibly other versions allows local users to provide a Trojan horse iphlpapi.dll to SKPF by placing it in the installation directory...
CVE-2007-0081
Sunbelt Kerio Personal Firewall SKPF 4.3.268 and 4.3.246, and possibly other versions allows local users to provide a Trojan horse iphlpapi.dll to SKPF by placing it in the installation directory...
CVE-2007-0081
Sunbelt Kerio Personal Firewall SKPF 4.3.268 and 4.3.246, and possibly other versions allows local users to provide a Trojan horse iphlpapi.dll to SKPF by placing it in the installation directory...
CVE-2007-0081
Sunbelt Kerio Personal Firewall (SKPF) 4.3.268 and 4.3.246 (and possibly other versions) is affected by CVE-2007-0081, where local users can place a Trojan horse iphlpapi.dll in the installation directory to compromise the product. The NVD CVSS2 base score is 6.8 (MEDIUM) with high impact on conf...
Kerio Personal Firewall IPHLPAPI.DLL本地权限提升漏洞
Kerio Personal Firewall是一款流行的个人防火墙应用程序。 Kerio Personal Firewall装载文件存在问题,本地攻击者可以利用漏洞提升特权。 系统库iphlpapi.dll安装在系统目录中,需要此DLL的SKPF服务先尝试在安装目录中查找iphlpapi.dll,如果在此目录没有找到,会尝试在系统目录中找,如果攻击者在SKPF中的安装目录中建立恶意的iphlpapi.dll文件,在SKPF服务初始化时被操作系统装载到SKPF服务中,导致恶意代码在SKPF服务中执行。 Sunbelt Software Kerio Personal Firewall...
Kerio可注入伪造iphlpapi DLL漏洞
Kerio Personal Firewall是一款个人桌面系统防火墙。 Kerio Personal Firewall处理程序相关组件的加载时存在漏洞,本地攻击者可能利用此漏洞提升权限或使防火墙失效。 Kerio Personal Firewall在加载相关的库文件iphlpapi.dll时,首先从软件的安装目录搜索,如果搜索不到才从操作系统目录加载,而且软件的安装目录是可写的,本地攻击者可以创建伪造的DLL文件,防火墙服务在初始化时加载执行其中的代码,导致执行攻击者的任意指令。 Kerio Personal Firewall 4.3.268 Kerio Personal Firewa...
Kerio Personal Firewall 4.3 - 'IPHLPAPI.dll' Local Privilege Escalation
source: https://www.securityfocus.com/bid/21828/info Kerio Personal Firewall is prone to a local privilege-escalation vulnerability. A local attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. A successful exploit could result in the complete compromi...