17 matches found
EUVD-2010-5203
Malware in sbrugna...
EUVD-2010-1618
Malware in sbrugna...
CVE-2024-34332
An issue in SiSoftware SANDRA v31.66 SANDRA.sys 15.18.1.1 and before allows an attacker to escalate privileges via a crafted buffer sent to the Kernel Driver using the DeviceIoControl Windows API...
CVE-2010-1592
sandra.sys 15.18.1.1 and earlier in the Sandra Device Driver in SiSoftware Sandra 16.10.2010.1 and earlier allows local users to gain privileges or cause a denial of service system crash via unspecified vectors involving "Model-Specific Registers."...
CVE-2024-34332
An issue in SiSoftware SANDRA v31.66 SANDRA.sys 15.18.1.1 and before allows an attacker to escalate privileges via a crafted buffer sent to the Kernel Driver using the DeviceIoControl Windows API...
CVE-2024-34332
CVE-2024-34332 describes a local privilege-escalation in SiSoftware SANDRA up to v31.66 (SANDRA.sys 15.18.1.1 or earlier) where a crafted buffer sent to the Windows kernel driver via DeviceIoControl can elevate privileges. The issue affects the kernel driver component and enables an attacker with...
CVE-2024-34332
An issue in SiSoftware SANDRA v31.66 SANDRA.sys 15.18.1.1 and before allows an attacker to escalate privileges via a crafted buffer sent to the Kernel Driver using the DeviceIoControl Windows API...
CVE-2024-34332
An issue in SiSoftware SANDRA v31.66 SANDRA.sys 15.18.1.1 and before allows an attacker to escalate privileges via a crafted buffer sent to the Kernel Driver using the DeviceIoControl Windows API...
SiSoftware SANDRA Security Vulnerability
SiSoftware SANDRA is a benchmarking, system diagnostic and analysis tool from SiSoftware UK. A security vulnerability exists in SiSoftware SANDRA version 31.66 and earlier, which originates from an attacker who has elevated privileges by sending a crafted buffer to the kernel driver using the...
CVE-2010-5244
Untrusted search path vulnerability in SiSoftware Sandra 2010 Lite 2010.7.16.52 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .sis file. NOTE: some of these details are obtained from third...
Design/Logic Flaw
Untrusted search path vulnerability in SiSoftware Sandra 2010 Lite 2010.7.16.52 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .sis file. NOTE: some of these details are obtained from third...
CVE-2010-5244
Untrusted search path vulnerability in SiSoftware Sandra 2010 Lite 2010.7.16.52 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .sis file. NOTE: some of these details are obtained from third...
CVE-2010-5244
CVE-2010-5244 involves untrusted search path vulnerability in SiSoftware Sandra 2010 Lite (version 2010.7.16.52). The root cause is that a Trojan horse dwmapi.dll placed in the current working directory can be loaded, enabling local users to gain privileges, as demonstrated by a directory contain...
Code injection
sandra.sys 15.18.1.1 and earlier in the Sandra Device Driver in SiSoftware Sandra 16.10.2010.1 and earlier allows local users to gain privileges or cause a denial of service system crash via unspecified vectors involving "Model-Specific Registers."...
CVE-2010-1592
sandra.sys 15.18.1.1 and earlier in the Sandra Device Driver in SiSoftware Sandra 16.10.2010.1 and earlier allows local users to gain privileges or cause a denial of service system crash via unspecified vectors involving "Model-Specific Registers."...
CVE-2010-1592
CVE-2010-1592 affects the Sandra Device Driver (sandra.sys) in SiSoftware Sandra, up to version 15.18.1.1 and earlier. The vulnerability is described as allowing local users to gain privileges or cause a denial of service (system crash) via unspecified vectors involving Model-Specific Registers. ...
CVE-2010-1592
sandra.sys 15.18.1.1 and earlier in the Sandra Device Driver in SiSoftware Sandra 16.10.2010.1 and earlier allows local users to gain privileges or cause a denial of service system crash via unspecified vectors involving “Model-Specific Registers.” Recent assessments: Assessed Attacker Value: 0...