14 matches found
GEAR Software CD DVD Filter Driver Insecure Method Local Privilege Escalation
The version of GEAR Software's CD DVD Filter kernel driver GEARAspiWDM.sys on the remote host contains an insecure method that allows a local user to make an unlimited number of calls to 'IoAttachDevice' from user-land, thereby enabling him to exploit a local privilege escalation flaw in the...
Gear Software CD DVD Filter driver privilege escalation vulnerability
Overview The Gear Software CD DVD Filter driver contains a privilege escalation vulnerability, which can allow an attacker to gain SYSTEM privileges. Description Gear Software provides a driver called CD DVD Filter, which is provided by GEARAspiWDM.sys. This driver is used by multiple CD/DVD...
Unrestricted file upload
Unrestricted file upload vulnerability in the FileUpload class running on the Symantec LiveState Apache Tomcat server, as used by Symantec Backup Exec System Recovery Manager 7.0 and 7.0.1, allows remote attackers to upload and execute arbitrary JSP files via unknown vectors...
CVE-2008-0457
Unrestricted file upload vulnerability in the FileUpload class running on the Symantec LiveState Apache Tomcat server, as used by Symantec Backup Exec System Recovery Manager 7.0 and 7.0.1, allows remote attackers to upload and execute arbitrary JSP files via unknown vectors...
Symantec Backup Exec Remote File Upload Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Backup Exec System Recovery Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists in the FileUpload class running on the Symantec LiveState Apache...
Buffer overflow
Buffer overflow in Ghost Service Manager, as used in Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery before 20070426, allows local users to gain privileges via a long string...
CVE-2007-2361
CVE-2007-2361 affects Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery and BackupExec System Recovery prior to 20070426. When remote backups of restore points are configured, a configuration file containing network share credentials is world-readable, allowing local users to read...
CVE-2007-2360
CVE-2007-2360 affects Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery prior to 20070426. When remote backups of restore point images are configured, network share credentials are encrypted with a key formed by a hash of the username, allowing loca...
CVE-2007-2359
CVE-2007-2359 concerns a buffer overflow in Ghost Service Manager used by Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery and BackupExec System Recovery prior to 20070426. The vulnerability arises from handling of a long string, enabling local users to gain privileges (local pri...
CVE-2006-6308
Symantec LiveState 7.1 Agent for Windows allows local users to gain privileges by stopping the shstart.exe process and open "Web Self-Service" from the system tray icon, which will open a browser window running with elevated privileges. NOTE: several third-party researchers have noted that...
CVE-2006-6308
Symantec LiveState 7.1 Agent for Windows allows local users to gain privileges by stopping the shstart.exe process and open "Web Self-Service" from the system tray icon, which will open a browser window running with elevated privileges. NOTE: several third-party researchers have noted that...
CVE-2006-6308
Symantec LiveState 7.1 Agent for Windows is affected. Local users can potentially gain privileges by stopping the shstart.exe process and selecting Web Self-Service from the system tray, which opens a browser window running with elevated privileges. The root cause is the browser window inheriting...
Symantec LiveState Agent privilege escalation
It's possible to launch Windows Explorer with SYSTEM privileges...
Symantec LiveState Agent for Windows vulnerability - Local Privilege Escalation
hello, we've found local privilege escalation in Symantec LiveState agent. PoC: 1. kill shstart.exe process 2. from symantec livestate agent icon in systray choose "Web Self-Service" 3. New browser window will open, it is running with SYSTEM privileges. tested on fully patched Win XP SP2, Symante...