PT-2012-3609 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Windows XP versions SP2 and SP3 Windows Server 2003 version SP2 Windows Vista version SP2 Windows Server 2008 versions SP2, R2, and R2 SP1 Windows 7 versions Gold and SP1 Description: The issue arises from the improper handling of user-mode...

PT-2011-2550 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 and SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 and SP2 Microsoft Windows Server 2008 versions Gold, SP2, R2, and R2 SP1 Microsoft Windows 7 versions Gold and SP1...

PT-2011-2545 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 and SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 and SP2 Microsoft Windows Server 2008 versions Gold, SP2, R2, and R2 SP1 Microsoft Windows 7 versions Gold and SP1...

CA Internet Security Suite Plus 'KmxSbx.sys' Buffer Overflow Vulnerability

This host is installed with CA Internet Security Suite Plus and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodcainternetsecuritysuitebofvuln.nasl 7019 2017-08-29 11:51:27Z teissa $ CA Internet Security Suite Plus 'KmxSbx.sys' Buffer Overflow Vulnerability Author...

CA Internet Security Suite Plus 'KmxSbx.sys' Buffer Overflow Vulnerability

CA Internet Security Suite Plus is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2010-3944

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 and Windows 7 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption Vulnerability."...

Avira Premium Security Suite - NtCreateKey Race Condition

Avira Premium Security Suite - NtCreateKey Race Condition 1.Description: The avipbb.sys kernel driver distributed with Avira Premium Security Suite contains a race condition vulnerability in the handling paramaters of NtCreatekey function. Exploitation of this issue allows an attacker to crash...

Microsoft Windows Win32k.sys内核驱动多个本地权限提升漏洞（MS10-073）

BUGTRAQ ID: 43773,43774 CVE ID: CVE-2010-2744,CVE-2010-2743 Microsoft Windows是微软发布的非常流行的操作系统。 Windows Win32k.sys内核态驱动加载特定键盘布局和验证窗口类数据的方式存在权限提升漏洞。成功利用这个漏洞的攻击者可以执行任意内核态代码。攻击者可随后安装程序；查看、更改或删除数据；或者创建拥有完全用户权限的新帐户。 Microsoft Windows XP SP3 Microsoft Windows XP Pro x64版SP2 Microsoft Windows Vista SP2...

Windows win32k.sys驱动用户池溢出本地权限提升漏洞（MS10-048）

BUGTRAQ ID: 42245 CVE ID: CVE-2010-1895 Microsoft Windows是微软发布的非常流行的操作系统。 Windows中的win32k.sys内核驱动在从用户态进行拷贝时没有正确地分配内存，导致权限提升。成功利用这个漏洞的攻击者可以执行任意内核态代码。攻击者可随后安装程序；查看、更改或删除数据；或者创建拥有完全用户权限的新帐户。 Microsoft Windows XP SP3 Microsoft Windows XP Pro x64版SP2 Microsoft Windows Server 2003 SP2 厂商补丁： Microsoft...

Avast! Internet Security 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption

No description provided by source. +-------------------------------------------------------------------------------------+ | Avast! Internet Security 5.0 'aswFW.sys' kernel driver IOCTL Memory Pool Corruption | +-------------------------------------------------------------------------------------...

Avast! Internet Security 5.0 - aswFW.sys Kernel Driver IOCTL Memory Pool Corruption

Avast! Internet Security 5.0 - aswFW.sys Kernel Driver IOCTL Memory Pool Corruption +-------------------------------------------------------------------------------------+ | Avast! Internet Security 5.0 'aswFW.sys' kernel driver IOCTL Memory Pool Corruption |...

Avast! 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption

Exploit for windows platform in category dos / poc ================================================================================= Avast! Internet Security 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption =================================================================================...

Avast! Internet Security 5.0 - 'aswFW.sys' Kernel Driver IOCTL Memory Pool Corruption

+-------------------------------------------------------------------------------------+ | Avast! Internet Security 5.0 'aswFW.sys' kernel driver IOCTL Memory Pool Corruption | +-------------------------------------------------------------------------------------+ Tested Platform: Avast! Internet...

Panda Products RKPavProc.sys IOCTL Handling Vulnerabilities

The installed Panda security product is reportedly affected by multiple vulnerabilities in the 'RKPavProc.sys' kernel driver that can be triggered by specially crafted IOCTLs, leading to a NULL pointer dereference or a stack-based buffer overflow. An attacker could leverage these flaws to cause a...

360杀毒和360安全卫士内核驱动多个本地拒绝服务漏洞

BUGTRAQ ID: 39936 360杀毒和360安全卫士都是在中国广泛使用的免费杀毒软件。 360杀毒和360安全卫士所使用的profos.sys和360FkAdv.sys驱动没有正确地验证从用户空间所传送的进程对象指针，本地用户可以通过提交恶意的IOCTL请求导致内核崩溃。 奇虎360 360安全卫士 6.1.5.1010 奇虎360 360杀毒 1.1.0.1096 厂商补丁： 奇虎360 ------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.360.cn/...

Design/Logic Flaw

The dlpcrypt.sys kernel driver 0.1.1.27 in DESlock+ 4.0.2 allows local users to gain privileges via a crafted IOCTL 0x80012010 request to the DLPCryptCore device...

CVE-2009-4832

The dlpcrypt.sys kernel driver 0.1.1.27 in DESlock+ 4.0.2 allows local users to gain privileges via a crafted IOCTL 0x80012010 request to the DLPCryptCore device...

CVE-2009-4832

CVE-2009-4832 affects the dlpcrypt.sys kernel driver (version 0.1.1.27) in DESlock+ 4.0.2. The vulnerability allows local privilege escalation via a crafted IOCTL 0x80012010 sent to the DLPCryptCore device. Documents identify the affected component and the exact IOCTL vector but do not provide ex...

Solaris Update for kernel/drv/sparcv9/ixgbe 143355-03

Check for the Version of kernel/drv/sparcv9/ixgbe OpenVAS Vulnerability Test Solaris Update for kernel/drv/sparcv9/ixgbe 143355-03 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

Avast Antivirus 'aavmker4.sys' Denial Of Service Vulnerability - Windows

Avast AntiVirus is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...