11 matches found
CVE-2007-4648
The nvcoaft51 driver in Norman Virus Control NVC 5.82 uses weak permissions unrestricted write access for the NvcOa device, which allows local users to gain privileges by 1 triggering a buffer overflow in a kernel pool via a string argument to ioctl 0xBF67201C; or by 2 sending a crafted KEVENT...
CVE-2007-4648
The nvcoaft51 driver in Norman Virus Control NVC 5.82 uses weak permissions unrestricted write access for the NvcOa device, which allows local users to gain privileges by 1 triggering a buffer overflow in a kernel pool via a string argument to ioctl 0xBF67201C; or by 2 sending a crafted KEVENT...
CVE-2007-4648
The CVE-2007-4648 entry describes a local privilege escalation in Norman Virus Control (NVC) 5.82 via the nvcoaft51 driver. The NvcOa device exposes weak permissions (unrestricted write access), enabling exploitation by: (1) triggering a kernel pool buffer overflow through a string argument to io...
Norman Virus Control nvcoaft51.sys ioctl BF672028 Exploit
No description provided by source. / Norman Virus Control nvcoaft51.sys ioctl BF672028 exploit Abstract nvcoaft51.sys driver receive as parameter in some ioctl's a pointer to a KEVENT struct, calling KeSetEvent without any prior check. The device created by the driver NvcOa can be opened by any...
norton-local.txt
/ Norman Virus Control nvcoaft51.sys ioctl BF672028 exploit Abstract nvcoaft51.sys driver receive as parameter in some ioctl's a pointer to a KEVENT struct, calling KeSetEvent without any prior check. The device created by the driver NvcOa can be opened by any user. As result, a user can send a...
Norman Virus Control - nvcoaft51.sys ioctl BF672028
Norman Virus Control - nvcoaft51.sys ioctl BF672028 / Norman Virus Control nvcoaft51.sys ioctl BF672028 exploit Abstract nvcoaft51.sys driver receive as parameter in some ioctl's a pointer to a KEVENT struct, calling KeSetEvent without any prior check. The device created by the driver NvcOa can b...
Norman Virus Control nvcoaft51.sys ioctl BF672028 Exploit
Exploit for unknown platform in category local exploits ========================================================= Norman Virus Control nvcoaft51.sys ioctl BF672028 Exploit ========================================================= / Norman Virus Control nvcoaft51.sys ioctl BF672028 exploit Abstrac...
Norman Virus Control - 'nvcoaft51.sys' ioctl BF672028
/ Norman Virus Control nvcoaft51.sys ioctl BF672028 exploit Abstract nvcoaft51.sys driver receive as parameter in some ioctl's a pointer to a KEVENT struct, calling KeSetEvent without any prior check. The device created by the driver NvcOa can be opened by any user. As result, a user can send a...
Norman Virus Control LZH及.ACE文件解析缓冲区溢出漏洞
BUGTRAQ ID: 25003,25015 Norman Virus Control是欧洲一个著名的杀毒软件。 Norman Virus Control的文件解析引擎没有正确的解析.LZH和.ACE文件,如果用户受骗打开了畸形的.LZH或.ACE文件的话,就可能触发缓冲区溢出,导致在用户系统上执行任意指令。 Norman Virus Control = 5.90 Norman ------ 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.norman.com/...
Norman Virus Control DOC文件解析拒绝服务漏洞
BUGTRAQ ID: 25014 Norman Virus Control是欧洲一个著名的杀毒软件。 Norman Virus Control在处理畸形格式的.DOC文件时存在漏洞,远程攻击者可能利用此漏洞导致程序不可用。 Norman Virus Control的文件解析引擎没有正确地解析.DOC OLE2文件,在解析计算时可能错误地将0用作除数,导致无法处理的异常,应用程序可能会崩溃。 Norman Virus Control = 5.90 Norman ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.norman.com/...
CVE-2005-3220
CVE-2005-3220 affects Norman Virus Control Antivirus. The vulnerability arises from an interpretation error in parsing a specially crafted RAR archive with malformed central/local headers, allowing a remote attacker to bypass virus detection when the executable is opened by affected products. Aff...