Avast! 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption

Exploit for windows platform in category dos / poc ================================================================================= Avast! Internet Security 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption =================================================================================...

Panda Products RKPavProc.sys IOCTL Handling Vulnerabilities

The installed Panda security product is reportedly affected by multiple vulnerabilities in the 'RKPavProc.sys' kernel driver that can be triggered by specially crafted IOCTLs, leading to a NULL pointer dereference or a stack-based buffer overflow. An attacker could leverage these flaws to cause a...

360杀毒和360安全卫士内核驱动多个本地拒绝服务漏洞

BUGTRAQ ID: 39936 360杀毒和360安全卫士都是在中国广泛使用的免费杀毒软件。 360杀毒和360安全卫士所使用的profos.sys和360FkAdv.sys驱动没有正确地验证从用户空间所传送的进程对象指针，本地用户可以通过提交恶意的IOCTL请求导致内核崩溃。 奇虎360 360安全卫士 6.1.5.1010 奇虎360 360杀毒 1.1.0.1096 厂商补丁： 奇虎360 ------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.360.cn/...

Design/Logic Flaw

The dlpcrypt.sys kernel driver 0.1.1.27 in DESlock+ 4.0.2 allows local users to gain privileges via a crafted IOCTL 0x80012010 request to the DLPCryptCore device...

CVE-2009-4832

The dlpcrypt.sys kernel driver 0.1.1.27 in DESlock+ 4.0.2 allows local users to gain privileges via a crafted IOCTL 0x80012010 request to the DLPCryptCore device...

CVE-2009-4832

CVE-2009-4832 affects the dlpcrypt.sys kernel driver (version 0.1.1.27) in DESlock+ 4.0.2. The vulnerability allows local privilege escalation via a crafted IOCTL 0x80012010 sent to the DLPCryptCore device. Documents identify the affected component and the exact IOCTL vector but do not provide ex...

Solaris Update for kernel/drv/sparcv9/ixgbe 143355-03

Check for the Version of kernel/drv/sparcv9/ixgbe OpenVAS Vulnerability Test Solaris Update for kernel/drv/sparcv9/ixgbe 143355-03 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

Avast Antivirus 'aavmker4.sys' Denial Of Service Vulnerability - Windows

Avast AntiVirus is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised

The ATI Rage 128 aka r128 driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine CCE state initialization, which allows local users to cause a denial of service NULL pointer dereference and system crash or possibly gain privileges via unspecified ioctl...

openSUSE Security Update : uvcvideo-kmp-bigsmp (uvcvideo-kmp-bigsmp-148)

The kernel driver uvcvideo was vulnerable to a buffer overflow in format descriptor parsing. CVE-2008-3496 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update uvcvideo-kmp-bigsmp-148. The text...

Code injection

The OAmon.sys kernel driver 3.1.0.0 and earlier in Tall Emu Online Armor Personal Firewall AV+ before 3.5.0.12, and Personal Firewall 3.5 before 3.5.0.14, allows local users to gain privileges via crafted METHODNEITHER IOCTL requests to \Device\OAmon containing arbitrary kernel addresses, as...

CVE-2009-2450

The OAmon.sys kernel driver 3.1.0.0 and earlier in Tall Emu Online Armor Personal Firewall AV+ before 3.5.0.12, and Personal Firewall 3.5 before 3.5.0.14, allows local users to gain privileges via crafted METHODNEITHER IOCTL requests to \Device\OAmon containing arbitrary kernel addresses, as...

CVE-2009-2450

The CVE-2009-2450 issue affects the OAmon.sys kernel driver (version 3.1.0.0 and earlier) used by Tall Emu Online Armor Personal Firewall AV+ (before 3.5.0.12) and Online Armor Personal Firewall 3.5 (before 3.5.0.14). The vulnerability allows local users to gain privileges via crafted METHOD_NEIT...

Solaris Update for /kernel/drv/asy and /usr/include/sys/asy.h 110325-04

Check for the Version of /kernel/drv/asy and /usr/include/sys/asy.h OpenVAS Vulnerability Test Solaris Update for /kernel/drv/asy and /usr/include/sys/asy.h 110325-04 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

Solaris Update for kernel/drv/le 115172-01

Check for the Version of kernel/drv/le OpenVAS Vulnerability Test Solaris Update for kernel/drv/le 115172-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Solaris Update for /kernel/drv/le and /kernel/drv/sparcv9/le 112609-02

Check for the Version of /kernel/drv/le and /kernel/drv/sparcv9/le OpenVAS Vulnerability Test Solaris Update for /kernel/drv/le and /kernel/drv/sparcv9/le 112609-02 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

Solaris Update for /kernel/drv/hme and /kernel/drv/sparcv9/hme 108981-15

Check for the Version of /kernel/drv/hme and /kernel/drv/sparcv9/hme OpenVAS Vulnerability Test Solaris Update for /kernel/drv/hme and /kernel/drv/sparcv9/hme 108981-15 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is fr...

Code injection

The psdrv.sys kernel driver in ArcaBit ArcaVir 2009 Antivirus Protection 9.4.3201.9 and earlier, ArcaVir 2009 Internet Security 9.4.3202.9 and earlier, ArcaVir 2009 System Protection 9.4.3203.9 and earlier, and ArcaBit 2009 Home Protection 9.4.3204.9 and earlier, allows local users to gain...

CVE-2009-1824

The psdrv.sys kernel driver in ArcaBit ArcaVir 2009 Antivirus Protection 9.4.3201.9 and earlier, ArcaVir 2009 Internet Security 9.4.3202.9 and earlier, ArcaVir 2009 System Protection 9.4.3203.9 and earlier, and ArcaBit 2009 Home Protection 9.4.3204.9 and earlier, allows local users to gain...

CVE-2009-1824

The CVE-2009-1824 entry describes a local privilege-escalation vulnerability in the ps_drv.sys kernel driver used by ArcaBit ArcaVir 2009 products (Antivirus Protection, Internet Security, System Protection) and related ArcaBit 2009 Home Protection builds. The issue arises when an attacker sends ...