ESET Smart Security easdrv.sys Local Privilege Escalation Vulnerability

ESET Smart Security is prone to a local privilege escalation vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[TKADV2008-006] CA HIPS KmxFw.sys Kernel Memory Corruption

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: CA HIPS KmxFw.sys Kernel Memory Corruption Advisory ID: TKADV2008-006 Revision: 1.0 Release Date: 2008/08/12 Last Modified: 2008/08/12 Date Reported: 2008/03/08 Author: Tobias Klein tk at trapkit.de Affected Software: CA Host-Based Intrusion...

Microsoft Windows XP/Vista/2000/2003/2008 Kernel - Usermode Callback Privilege Escalation (MS08-025) (1)

/ source: https://www.securityfocus.com/bid/28554/info Microsoft Windows is prone to a local privilege-escalation vulnerability. The vulnerability resides in the Windows kernel. A locally logged-in user can exploit this issue to gain kernel-level access to the operating system. / include include...

Sun Solaris DTrace动态追踪框架信息泄露漏洞

BUGTRAQ ID: 27942 Solaris是一款由Sun开发和维护的商业性质UNIX操作系统。 Solaris 10 DTrace（请见dtrace1M）动态追踪框架中的安全漏洞可能允许给予了PRIVDTRACEUSER或PRIVDTRACEPROC权限（请见privileges5）的本地用户或非全局区执行一些内核级追踪，然后这些用户就可以访问敏感信息。 Sun Solaris 10x86 Sun Solaris 10.0 临时解决方法：...

Intel® LAN Driver Buffer Overflow Local Privilege Escalation

Summary: A software vulnerability exists in the specified PCI, PCI-X and PCIe Intel network component drivers that could allow unprivileged code executing on an affected system to perform a local privilege escalation. Description: This software vulnerability is due to a buffer overflow that could...

Creative Ensoniq PCI ES1371 WDM Driver 5.1.3612 - Local Privilege Escalation

Creative Ensoniq PCI ES1371 WDM Driver 5.1.3612 - Local Privilege Escalation source: https://www.securityfocus.com/bid/27179/info Creative Ensoniq PCI ES1371 WDM drivers are prone to a local privilege-escalation vulnerability. Successful exploits allow local users to execute arbitrary machine cod...

Creative Ensoniq PCI ES1371 WDM Driver 5.1.3612 - Local Privilege Escalation

source: https://www.securityfocus.com/bid/27179/info Creative Ensoniq PCI ES1371 WDM drivers are prone to a local privilege-escalation vulnerability. Successful exploits allow local users to execute arbitrary machine code with kernel-level privileges, facilitating the complete compromise of...

Symantec SYMTDI.SYS Device Driver Local Elevation of Privilege

SUMMARY Some versions of Symantecs device driver SYMTDI.SYS contain a vulnerability which, if successfully exploited, could allow a local attacker to execute arbitrary code with system level privileges. Risk Impact Medium Remote Access | No ---|--- Local Access | Yes Authentication Required | Yes...

SafeNet High Assurance Remote 1.4.0 - 'IPSecDrv.sys' Remote Denial of Service

/ safenet-dos.c SafeNet HighAssurance Remote 1.4.0 Ring0 DoS win32 by John Anderson mu-b - Mar 2006 - June 2007 - Tested on: SafeNet HighAssurance Remote 1.4.0 Build 12 win32 Kernel level Ring0 DoS in IPv6 support of IPSecDrv.sys causes an infinite loop in searching option headers 0x1000BEB0. Thi...

Apple Mac OSX 10.4.8 - DMG UFS FFS_MountFS Integer Overflow

Apple Mac OSX 10.4.8 - DMG UFS FFSMountFS Integer Overflow source: https://www.securityfocus.com/bid/21993/info Apple Mac OS X is prone to a remote integer-overflow vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploit...

Apple Mac OSX 10.4.8 - DMG UFS FFS_MountFS Integer Overflow

source: https://www.securityfocus.com/bid/21993/info Apple Mac OS X is prone to a remote integer-overflow vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploit can allow a remote attacker to execute arbitrary code with...

Microsoft Windows csrss (?) memory corruption exploited in-the-wild

Dear [email protected], On one of Russian forum security vulnerability is discussed in Microsoft Windows Windows XP is tested. A vulnerability is caused by memory corruption is string beginning with "?" is send thorugh MessageBox API with MBSERVICENOTIFICATION flag. It looks like some "debug"...

CVE-2006-6385

Stack-based buffer overflow in Intel PRO 10/100, PRO/1000, and PRO/10GbE PCI, PCI-X, and PCIe network adapter drivers aka NDIS miniport drivers before 20061205 allows local users to execute arbitrary code with "kernel-level" privileges via an incorrect function call in certain OID handlers...

CVE-2006-6385

Stack-based buffer overflow in Intel PRO 10/100, PRO/1000, and PRO/10GbE PCI, PCI-X, and PCIe network adapter drivers aka NDIS miniport drivers before 20061205 allows local users to execute arbitrary code with "kernel-level" privileges via an incorrect function call in certain OID handlers...

CVE-2006-6385

CVE-2006-6385 describes a stack-based buffer overflow in Intel PRO Ethernet NDIS miniport drivers (PRO 10/100, PRO/1000, PRO/10GbE for PCI, PCI-X, PCIe) before 2006-12-05. The flaw allows a local attacker to execute arbitrary code with kernel-level privileges via an incorrect OID-handling functio...

Intel? Centrino Wireless Driver畸形帧远程代码执行漏洞

Intel 2200BG和2915ABG PRO/Wireless Network Connection Hardware是无线连接适配设备。 Windows操作系统下的Intel 2200BG和2915ABG PRO/Wireless Network Connection Hardware不正确处理畸形帧数据，远程攻击者可以利用漏洞以内核级权限执行任意指令，控制系统。 问题存在于w22n50.sys, w22n51.sys, w29n50.sys, w29n51.sys驱动中，目前没有详细漏洞细节提供。 Intel PROSet/Wireless 8, 9, 10 Intel...

Apple Mac OSX 10.4.x - Mach-O Binary Loading Integer Overflow

source: https://www.securityfocus.com/bid/21291/info Apple Mac OS X is prone to a local integer-overflow vulnerability. This issue occurs when the operating system fails to handle specially crafted binaries. A successful exploit would allow a local attacker to execute arbitrary code with...

Apple Mac OSX 10.4.x - Mach-O Binary Loading Integer Overflow

Apple Mac OSX 10.4.x - Mach-O Binary Loading Integer Overflow source: https://www.securityfocus.com/bid/21291/info Apple Mac OS X is prone to a local integer-overflow vulnerability. This issue occurs when the operating system fails to handle specially crafted binaries. A successful exploit would...

Symantec products fail to properly limit device driver access to kernel memory

Overview Certain device drivers included with Symantec products fail to properly verify address space within the "IOCTL" handlers. Description Symantec provides Anti-Virus and Internet Security products that are designed to protect users. According to Symantec Security Response SYM06-020:A...

Apple Mac OSX 10.x - AirPort Wireless Driver Multiple Buffer Overflow Vulnerabilities

Apple Mac OSX 10.x - AirPort Wireless Driver Multiple Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/20144/info The Apple Mac OS X AirPort wireless driver is prone to multiple buffer-overflow vulnerabilities because it fails to perform sufficient bounds checking before...