Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the emacdispatchskbzc function in the icssg-prueth driver failing to copy XDP buffer data to a new skb,...

CVE-2019-11490

An issue was discovered in Npcap 0.992. Sending a malformed .pcap file with the loopback adapter using either pcapsendqueuequeue or pcapsendqueuetransmit results in kernel pool corruption. This could lead to arbitrary code executing inside the Windows kernel and allow escalation of privileges...

EUVD-2017-8278

Malware in sbrugna...

EUVD-2018-15776

Malware in sbrugna...

Exploit for Out-of-bounds Read in Microsoft

Information ============== Windows Kernel Pool clfs.sys Cor...

Siemens SIMATIC CP Use After Free (CVE-2020-9273)

In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-after-free in allocpool in pool.c, and possible remote code execution. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for mo...

PRTG Network Monitor < 19.4.53.1912 Multiple Vulnerabilities

PRTG Network Monitor is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software...

UBUNTU-CVE-2020-9273

In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-after-free in allocpool in pool.c, and possible remote code execution...

Windows Kernel - win32k.sys TTF Font Processing Pool Corruption in win32k!ulClearTypeFilter

Windows Kernel - win32k.sys TTF Font Processing Pool Corruption in win32k!ulClearTypeFilter We have encountered a Windows kernel crash in the win32k.sys driver while processing a corrupted TTF font file. An example crash log excerpt generated after triggering the bug is shown below: --- cut ---...

Code injection

An issue was discovered in Npcap 0.992. Sending a malformed .pcap file with the loopback adapter using either pcapsendqueuequeue or pcapsendqueuetransmit results in kernel pool corruption. This could lead to arbitrary code executing inside the Windows kernel and allow escalation of privileges...

CVE-2019-11490

An issue was discovered in Npcap 0.992. Sending a malformed .pcap file with the loopback adapter using either pcapsendqueuequeue or pcapsendqueuetransmit results in kernel pool corruption. This could lead to arbitrary code executing inside the Windows kernel and allow escalation of privileges...

CVE-2019-11490

An issue was discovered in Npcap 0.992. Sending a malformed .pcap file with the loopback adapter using either pcapsendqueuequeue or pcapsendqueuetransmit results in kernel pool corruption. This could lead to arbitrary code executing inside the Windows kernel and allow escalation of privileges...

CVE-2019-11490

Npcap 0.992 is affected by CVE-2019-11490. Sending a malformed .pcap to the loopback adapter via pcap_sendqueue_queue() or pcap_sendqueue_transmit() can cause kernel pool corruption, enabling arbitrary code execution inside the Windows kernel and resulting in privilege escalation. No remediation ...

Memory corruption

An exploitable pool corruption vulnerability exists in the 0x8200E804 IOCTL handler functionality of WIBU-SYSTEMS WibuKey.sys Version 6.40 Build 2400. A specially crafted IRP request can cause a buffer overflow, resulting in kernel memory corruption and, potentially, privilege escalation. An...

CVE-2018-3990

An exploitable pool corruption vulnerability exists in the 0x8200E804 IOCTL handler functionality of WIBU-SYSTEMS WibuKey.sys Version 6.40 Build 2400. A specially crafted IRP request can cause a buffer overflow, resulting in kernel memory corruption and, potentially, privilege escalation. An...

CVE-2018-3990

An exploitable pool corruption vulnerability exists in the 0x8200E804 IOCTL handler functionality of WIBU-SYSTEMS WibuKey.sys Version 6.40 Build 2400. A specially crafted IRP request can cause a buffer overflow, resulting in kernel memory corruption and, potentially, privilege escalation. An...

CVE-2018-3990

CVE-2018-3990 concerns WIBU-SYSTEMS WibuKey.sys (Version 6.40, Build 2400). The vulnerability exists in the 0x8200E804 IOCTL handler; a specially crafted IRP can trigger a buffer overflow, causing kernel memory corruption and potentially privilege escalation. Talos reports this vulnerability can ...

CVE-2018-3990

An exploitable pool corruption vulnerability exists in the 0x8200E804 IOCTL handler functionality of WIBU-SYSTEMS WibuKey.sys Version 6.40 Build 2400. A specially crafted IRP request can cause a buffer overflow, resulting in kernel memory corruption and, potentially, privilege escalation. An...

WIBU-SYSTEMS WibuKey.sys 0x8200E804 pool corruption privilege escalation vulnerability

Summary An exploitable pool corruption vulnerability exists in the 0x8200E804 IOCTL handler functionality of WIBU-SYSTEMS WibuKey.sys Version 6.40 Build 2400. A specially crafted IRP request can cause a buffer overflow, resulting in kernel memory corruption and, potentially, privilege escalation...

Vulnerability Spotlight : Multiple Vulnerabilities in WIBU-SYSTEMS WibuKey.sys

These vulnerabilities were discovered by Marcin 'Icewall' Noga of Cisco Talos. Executive Summary WibuKey is a Digital Rights Management DRM solution that has been used in a large number of solutions such as Straton, Archicad, GRAPHISOFT, V-Ray and others. It has been leveraged by over 3,000...