4 matches found
CVE-2015-6923
The ndvbs module in VBox Communications Satellite Express Protocol 2.3.17.3 allows local users to write to arbitrary physical memory locations and gain privileges via a 0x00000ffd ioctl call...
Design/Logic Flaw
The ndvbs module in VBox Communications Satellite Express Protocol 2.3.17.3 allows local users to write to arbitrary physical memory locations and gain privileges via a 0x00000ffd ioctl call...
CVE-2015-6923
CVE-2015-6923 affects VBox Communications Satellite Express Protocol 2.3.17.3. The ndvbs module permits a local attacker to write arbitrary physical memory via IOCTL 0x00000ffd, enabling privilege escalation by overwriting HalDispatchTable function pointers (arbitrary code execution). Public advi...
VBox Satellite Express Arbitrary Write Privilege Escalation
Vulnerability Details Affected Vendor: VBox Communications Affected Product: Satellite Express Protocol Affected Version: 2.3.17.3 Platform: Microsoft Windows XP SP3, Microsoft Windows 7 x86 CWE Classification: CWE-123: Write-what-where condition Impact: Arbitrary Code Execution Attack vector:...