The vulnerability of the nsm DropPrivileges function (from the support/nsm.File.c module in the NFS utilities nfs-utils package) arises from improper assignment of standard privileges. This allows attackers to gain access to confidential data and compromise its integrity.

The vulnerability of the nsm DropPrivileges function from the NFS utility package nfs-utils, file.c section is related to the improper assignment of standard privileges. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to confidential data, compromise its...

多家厂商防火墙/HIPS进程欺骗漏洞

AntiHook、AVG Anti-Virus plus Firewall、Comodo Personal Firewall等都是非常流行的防火墙。 多个主机安全软件在处理用户态进程信息时存在漏洞，攻击者可能利用此漏洞绕过安全限制。 对每个进程实施安全保护的个人防火墙、HIPS和类似的安全软件必须能够识别出试图执行特权操作的进程。通常，这不仅需要名称和进程标识符，还需要进程的完整路径等信息。一些安全软件错误的从未知进程的用户态结构获得这些信息，这意味着这些安全软件依赖于可能会被恶意应用程序更改了的用户态数据，导致恶意进程看起来好像是其他进程，以绕过检测执行特权操作。 InfoProces...