289 matches found
Memory corruption
The ESET Personal Firewall NDIS filter EpFwNdis.sys kernel mode driver, aka Personal Firewall module before Build 1212 20140609, as used in multiple ESET products 5.0 through 7.0, allows local users to obtain sensitive information from kernel memory via crafted IOCTL calls...
CVE-2014-4974
Vulnerability summary (CVE-2014-4974): The ESET Personal Firewall NDIS filter driver (EpFwNdis.sys) in multi-VM/host products (kernel module used in ESET 5.0–7.0) is vulnerable to local IOCTL-based memory leakage. The issue affects EpFwNdis.sys built before 1212 (20140609); crafted IOCTL calls ca...
CVE-2014-4973
The ESET Personal Firewall NDIS filter EpFwNdis.sys driver in the Firewall Module Build 1183 20140214 and earlier in ESET Smart Security and ESET Endpoint Security products 5.0 through 7.0 allows local users to gain privileges via a crafted argument to a 0x830020CC IOCTL call...
Immunity Canvas: ESET_EPFWNDIS
Name| ESETEpFwNDIS ---|--- CVE| CVE-2014-4973 Exploit Pack| CANVAS Description| EpFwNDIS.sys Trusted Value Vulnerability Notes| Repeatability: Infinite Notes: This module exploits a vulnerability on the ESET Personal Firewall NDIS filter EpFwNdis.sys driver. The Firewall Module Build 1183 2014021...
Code injection
The ESET Personal Firewall NDIS filter EpFwNdis.sys driver in the Firewall Module Build 1183 20140214 and earlier in ESET Smart Security and ESET Endpoint Security products 5.0 through 7.0 allows local users to gain privileges via a crafted argument to a 0x830020CC IOCTL call...
CVE-2014-4973
The CVE-2014-4973 issue affects the EpFwNdis.sys driver (ESET Personal Firewall NDIS filter) in ESET Smart Security/Endpoint Security 5.0–7.0 (Firewall Module Build 1183, 20140214) and earlier. The vulnerability is a trusted-value condition exploitable via IOCTL 0x830020CC with a crafted input bu...
Threat Outbreak Alert RuleID10987: Email Messages Distributing Malicious Software on August 8, 2014
Medium Alert ID: 35225 First Published: 2014 August 9 01:59 GMT Last Updated: 2014 August 11 15:39 GMT Version: 2 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID10987 may...
Online Armor < 3.5.0.12 (OAmon.sys) Local Privilege Escalation Exploit
No description provided by source. //////////////////////////////////////////////////////////////////////////////////// // +----------------------------------------------------------------------------+ // // | | // // | Tall Emu Pty Ltd - http://www.tallemu.com/ | // // | | // // | Affected...
Computer Associates Personal Firewall 9.0 HIPS Driver (kmxstart.sys) Local Privilege Escalation
No description provided by source. source: http://www.securityfocus.com/bid/21140/info Multiple Computer Associates security-related products are prone to multiple local privilege-escalation vulnerabilities. An attacker can leverage these issues to execute arbitrary code with SYSTEM-level...
FortKnox Personal Firewall 9.0.305.0 & 10.0.305.0 - Kernel Driver (fortknoxfw.sys) Memory Corruption Vulnerability
No description provided by source. / Exploit Title: 0day FortKnox Personal Firewall kernel driver fortknoxfw.sys memory corruption vulnerability Date: 25/10/2013 Author: Arash Allebrahim Contact : [email protected] Vendor Homepage: http://www.fortknox-firewall.com/ Vulnerable software :...
Kerio Personal Firewall 2.1.x Remote Authentication Packet Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/7180/info A buffer-overflow vulnerability has been discovered in Kerio Personal Firewall. The problem occurs during the administration authentication process. An attacker could exploit this vulnerability by forging a...
Kerio Personal Firewall 2.1.x/4.x Local Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11859/info It is reported that the Kerio Personal Firewall KPF driver does not sufficiently sanitize API parameters that are received from API's that are hooked by KPF. When the KPF API hook handles certain parameter data...
Sygate Personal Firewall 5.6 build 2808 ActiveX with DEP bypass
No description provided by source. html !-- |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | |...
Kerio Personal Firewall 4.0.x Web Filtering Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10075/info Kerio Personal Firewall includes Web URI Filtering functionality. A denial of service vulnerability has been reported to affect Kerio Personal Firewall when Web Filtering functionality is enabled. The issue...
Computer Associates Personal Firewall 9.0 HIPS Driver (kmxfw.sys) Local Privilege Escalation
No description provided by source. source: http://www.securityfocus.com/bid/21140/info Multiple Computer Associates security-related products are prone to multiple local privilege-escalation vulnerabilities. An attacker can leverage these issues to execute arbitrary code with SYSTEM-level...
Sygate Personal Firewall Pro 5.5 - Local Fail-Close Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10540/info A vulnerability is reported to affect the Sygate Personal Firewall fail-closed functionality. It is reported that the kernel-space NDIS driver does not verify the origin of messages that are received through th...
Sunbelt Kerio Personal Firewall 4.3.426 CreateRemoteThread Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18996/info Sunbelt Kerio Personal Firewall is prone to a denial-of-service vulnerability. This issue can occur when a program calls the 'CreateRemoteThread' Windows API call. Exploitation of this vulnerability could cause...
Multiple Personal Firewall Products - Local Protection Mechanism Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23987/info Multiple personal firewall products are prone to a vulnerability that lets attackers bypass protection mechanisms. This issue occurs because the applications fail to properly implement protection mechanisms bas...
Sygate Personal Firewall 5.0 DLL Authentication Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9312/info A vulnerability has been reported to affect Sygate Personal Firewall that may allow a user to bypass DLL authentication controls. The issue has been reported to present itself in the routines that are used to...
Kerio Firewall 2.1.4 Authentication Packet Overflow
No description provided by source. $Id: kerioauth.rb 9525 2010-06-15 07:18:08Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...