94 matches found
CVE-2010-5173
CVE-2010-5173 concerns a race condition in PC Tools Firewall Plus 6.0.0.88 on Windows XP that could allow local users to bypass kernel-mode hook handlers by manipulating user-space memory during hook-handler execution (KHOBE/argument-switch attack). Red Hat and other sources corroborate a local-a...
CVE-2010-5174
Prevx 3.0.5.143 on Windows XP is affected by a race condition that lets local users bypass kernel-mode hook handlers and execute code that might evade signature-based malware detection, via certain user-space memory changes during hook-handler execution (KHOBE/argument-switch attack). The issue i...
CVE-2010-5178
ThreatFire 4.7.0.17 on Windows XP is affected by a race-condition vulnerability that can bypass kernel-mode hook handlers via KHOBE/argument-switch memory changes during hook execution, allowing local code execution that could evade signature-based detection. Affected component: ThreatFire’s hook...
CVE-2010-5179
Race condition in Trend Micro Internet Security Pro 2010 17.50.1647.0000 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memor...
CVE-2010-5171
Race condition in Outpost Security Suite Pro 6.7.3.3063.452.0726 and 7.0.3330.505.1221 BETA on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certa...
CVE-2010-5167
Race condition in Norman Security Suite PRO 8.0 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during...
CVE-2010-5152
Race condition in AVG Internet Security 9.0.791 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during...
CVE-2010-5160
The CVE-2010-5160 entry concerns ESET Smart Security 4.2.35.3 on Windows XP . It describes a race condition that allows local users to bypass kernel-mode hook handlers and run code that would otherwise be blocked by a handler, via certain user-space memory changes during hook-handler execution, r...
CVE-2010-5167
CVE-2010-5167 affects Norman Security Suite PRO 8.0 on Windows XP. It describes a race condition that lets local attackers bypass kernel-mode hook handlers by specific user-space memory changes during hook-handler execution (KHOBE attack), potentially enabling code execution blocked by handlers b...
CVE-2010-5182
Race condition in VirusBuster Internet Security Suite 3.2 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes durin...
CVE-2010-5160
Race condition in ESET Smart Security 4.2.35.3 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during...
CVE-2010-5175
CVE-2010-5175 affects PrivateFirewall 7.0.20.37 on Windows XP. A race condition in the product allows local users to bypass kernel-mode hook handlers via certain user-space memory changes during hook-handler execution, an issue also described as an argument-switch or KHOBE attack. This bypass cou...
CVE-2010-5180
CVE-2010-5180 concerns a race condition in VBA32 Personal 3.12.12.4 on Windows XP that allows a local user to bypass kernel-mode hook handlers by performing certain user-space memory changes during hook-handler execution (KHOBE/argument-switch attack). Affected component: VBA32 Personal 3.12.12.4...
CVE-2010-5170
CVE-2010-5170 affects Online Solutions Security Suite 1.5.14905.0 on Windows XP. A race condition during hook-handler execution allows local users to bypass kernel-mode hook handlers and run code that would otherwise be blocked by a handler but not by signature-based detection (KHOBE/argument-swi...
CVE-2010-5175
Race condition in PrivateFirewall 7.0.20.37 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler...
CVE-2010-5161
Race condition in F-Secure Internet Security 2010 10.00 build 246 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory chang...
CVE-2010-5155
Race condition in Blink Professional 4.6.1 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler...
CVE-2010-5164
Race condition in KingSoft Personal Firewall 9 Plus 2009.05.07.70 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory chang...
CVE-2010-5169
CVE-2010-5169 describes a race condition in Online Armor Premium 4.0.0.35 on Windows XP that lets local users bypass kernel-mode hook handlers and execute code blocked by the handler or by signature-based malware detection. The KHOBE/argument-switch attack relies on specific user-space memory cha...
CVE-2010-5169
Race condition in Online Armor Premium 4.0.0.35 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during...