Lucene search
K

1760 matches found

exploitpack
exploitpack
added 2010/11/03 12:0 a.m.11 views

Avira Premium Security Suite - NtCreateKey Race Condition

Avira Premium Security Suite - NtCreateKey Race Condition 1.Description: The avipbb.sys kernel driver distributed with Avira Premium Security Suite contains a race condition vulnerability in the handling paramaters of NtCreatekey function. Exploitation of this issue allows an attacker to crash...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2010/10/15 12:0 a.m.49 views

Microsoft Windows Win32k.sys内核驱动多个本地权限提升漏洞(MS10-073)

BUGTRAQ ID: 43773,43774 CVE ID: CVE-2010-2744,CVE-2010-2743 Microsoft Windows是微软发布的非常流行的操作系统。 Windows Win32k.sys内核态驱动加载特定键盘布局和验证窗口类数据的方式存在权限提升漏洞。成功利用这个漏洞的攻击者可以执行任意内核态代码。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。 Microsoft Windows XP SP3 Microsoft Windows XP Pro x64版SP2 Microsoft Windows Vista SP2...

7.2CVSS2.2AI score0.14849EPSS
Exploits9
seebug.org
seebug.org
added 2010/08/12 12:0 a.m.31 views

Windows win32k.sys驱动用户池溢出本地权限提升漏洞(MS10-048)

BUGTRAQ ID: 42245 CVE ID: CVE-2010-1895 Microsoft Windows是微软发布的非常流行的操作系统。 Windows中的win32k.sys内核驱动在从用户态进行拷贝时没有正确地分配内存,导致权限提升。成功利用这个漏洞的攻击者可以执行任意内核态代码。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。 Microsoft Windows XP SP3 Microsoft Windows XP Pro x64版SP2 Microsoft Windows Server 2003 SP2 厂商补丁: Microsoft...

7.2CVSS6.4AI score0.01591EPSS
Exploits1
seebug.org
seebug.org
added 2010/08/03 12:0 a.m.15 views

Avast! Internet Security 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption

No description provided by source. +-------------------------------------------------------------------------------------+ | Avast! Internet Security 5.0 'aswFW.sys' kernel driver IOCTL Memory Pool Corruption | +-------------------------------------------------------------------------------------...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/08/03 12:0 a.m.20 views

Avast! 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption

Exploit for windows platform in category dos / poc ================================================================================= Avast! Internet Security 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption =================================================================================...

7AI score
Exploits0
exploitpack
exploitpack
added 2010/08/03 12:0 a.m.12 views

Avast! Internet Security 5.0 - aswFW.sys Kernel Driver IOCTL Memory Pool Corruption

Avast! Internet Security 5.0 - aswFW.sys Kernel Driver IOCTL Memory Pool Corruption +-------------------------------------------------------------------------------------+ | Avast! Internet Security 5.0 'aswFW.sys' kernel driver IOCTL Memory Pool Corruption |...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/08/03 12:0 a.m.30 views

Avast! Internet Security 5.0 - 'aswFW.sys' Kernel Driver IOCTL Memory Pool Corruption

+-------------------------------------------------------------------------------------+ | Avast! Internet Security 5.0 'aswFW.sys' kernel driver IOCTL Memory Pool Corruption | +-------------------------------------------------------------------------------------+ Tested Platform: Avast! Internet...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/07/09 12:0 a.m.14 views

Panda Products RKPavProc.sys IOCTL Handling Vulnerabilities

The installed Panda security product is reportedly affected by multiple vulnerabilities in the 'RKPavProc.sys' kernel driver that can be triggered by specially crafted IOCTLs, leading to a NULL pointer dereference or a stack-based buffer overflow. An attacker could leverage these flaws to cause a...

6.4AI score
Exploits0References2
seebug.org
seebug.org
added 2010/05/06 12:0 a.m.27 views

360杀毒和360安全卫士内核驱动多个本地拒绝服务漏洞

BUGTRAQ ID: 39936 360杀毒和360安全卫士都是在中国广泛使用的免费杀毒软件。 360杀毒和360安全卫士所使用的profos.sys和360FkAdv.sys驱动没有正确地验证从用户空间所传送的进程对象指针,本地用户可以通过提交恶意的IOCTL请求导致内核崩溃。 奇虎360 360安全卫士 6.1.5.1010 奇虎360 360杀毒 1.1.0.1096 厂商补丁: 奇虎360 ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.360.cn/...

6.9AI score
Exploits0
Prion
Prion
added 2010/04/29 7:30 p.m.11 views

Design/Logic Flaw

The dlpcrypt.sys kernel driver 0.1.1.27 in DESlock+ 4.0.2 allows local users to gain privileges via a crafted IOCTL 0x80012010 request to the DLPCryptCore device...

7.2CVSS6.9AI score0.00826EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2010/04/29 7:0 p.m.48 views

CVE-2009-4832

CVE-2009-4832 affects the dlpcrypt.sys kernel driver (version 0.1.1.27) in DESlock+ 4.0.2. The vulnerability allows local privilege escalation via a crafted IOCTL 0x80012010 sent to the DLPCryptCore device. Documents identify the affected component and the exact IOCTL vector but do not provide ex...

7.2CVSS6.6AI score0.00826EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2010/04/29 7:0 p.m.26 views

CVE-2009-4832

The dlpcrypt.sys kernel driver 0.1.1.27 in DESlock+ 4.0.2 allows local users to gain privileges via a crafted IOCTL 0x80012010 request to the DLPCryptCore device...

6.4AI score0.00826EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2010/03/12 12:0 a.m.9 views

Solaris Update for kernel/drv/sparcv9/ixgbe 143355-03

Check for the Version of kernel/drv/sparcv9/ixgbe OpenVAS Vulnerability Test Solaris Update for kernel/drv/sparcv9/ixgbe 143355-03 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

0.1AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/03/02 12:0 a.m.21 views

Avast Antivirus 'aavmker4.sys' Denial Of Service Vulnerability - Windows

Avast AntiVirus is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.2CVSS6.5AI score0.0093EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2009/12/15 5:12 p.m.2 views

kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised

The ATI Rage 128 aka r128 driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine CCE state initialization, which allows local users to cause a denial of service NULL pointer dereference and system crash or possibly gain privileges via unspecified ioctl...

7.8CVSS7.1AI score0.00425EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.37 views

openSUSE Security Update : uvcvideo-kmp-bigsmp (uvcvideo-kmp-bigsmp-148)

The kernel driver uvcvideo was vulnerable to a buffer overflow in format descriptor parsing. CVE-2008-3496 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update uvcvideo-kmp-bigsmp-148. The text...

10CVSS5.7AI score0.03275EPSS
Exploits0References2
Prion
Prion
added 2009/07/13 5:30 p.m.11 views

Code injection

The OAmon.sys kernel driver 3.1.0.0 and earlier in Tall Emu Online Armor Personal Firewall AV+ before 3.5.0.12, and Personal Firewall 3.5 before 3.5.0.14, allows local users to gain privileges via crafted METHODNEITHER IOCTL requests to \Device\OAmon containing arbitrary kernel addresses, as...

7.2CVSS7.2AI score0.00767EPSS
Exploits1References5Affected Software2
NVD
NVD
added 2009/07/13 5:30 p.m.14 views

CVE-2009-2450

The OAmon.sys kernel driver 3.1.0.0 and earlier in Tall Emu Online Armor Personal Firewall AV+ before 3.5.0.12, and Personal Firewall 3.5 before 3.5.0.14, allows local users to gain privileges via crafted METHODNEITHER IOCTL requests to \Device\OAmon containing arbitrary kernel addresses, as...

7.2CVSS6.6AI score0.00767EPSS
Exploits1References5
CVE
CVE
added 2009/07/13 5:0 p.m.46 views

CVE-2009-2450

The CVE-2009-2450 issue affects the OAmon.sys kernel driver (version 3.1.0.0 and earlier) used by Tall Emu Online Armor Personal Firewall AV+ (before 3.5.0.12) and Online Armor Personal Firewall 3.5 (before 3.5.0.14). The vulnerability allows local users to gain privileges via crafted METHOD_NEIT...

7.2CVSS6.8AI score0.00767EPSS
Exploits1References5Affected Software2
OpenVAS
OpenVAS
added 2009/06/03 12:0 a.m.6 views

Solaris Update for kernel/drv/le 115172-01

Check for the Version of kernel/drv/le OpenVAS Vulnerability Test Solaris Update for kernel/drv/le 115172-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

0.1AI score
Exploits0References2
Rows per page
Query Builder