15 matches found
EUVD-2007-4950
Malware in sbrugna...
EUVD-2007-5023
Malware in sbrugna...
EUVD-2007-5021
Malware in sbrugna...
Rising AntiVirus 2008/2009/2010 - Local Privilege Escalation
//by Dlrow [email protected] //restore all ssdt hooks // Rising0day.cpp : Defines the entry point for the console application. // include "stdafx.h" include "windows.h" enum SystemModuleInformation = 11 ; typedef struct ULONG Unknown1; ULONG Unknown2; PVOID Base; ULONG Size; ULONG Flags; USHORT...
Design/Logic Flaw
Ghost Security Suite alpha 1.200 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via the 1 NtCreateKey, 2 NtCreateThread, 3 NtDeleteValueKey, 4...
Information disclosure
Outpost Firewall Pro 4.0.1025.7828 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via the 1 NtCreateKey, 2 NtDeleteFile, 3 NtLoadDriver, 4...
Design/Logic Flaw
Ghost Security Suite beta 1.110 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via the 1 NtCreateKey, 2 NtDeleteValueKey, 3 NtQueryValueKey, 4...
CVE-2007-5040
Ghost Security Suite alpha 1.200 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via the 1 NtCreateKey, 2 NtCreateThread, 3 NtDeleteValueKey, 4...
CVE-2007-5041
G DATA InternetSecurity 2007 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via the 1 NtCreateKey and 2 NtOpenProcess kernel SSDT hooks...
Code injection
ProSecurity 1.40 Beta 2 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via kernel SSDT hooks for Windows Native API functions including 1 NtCreateKey,...
Authentication flaw
RegMon 7.04 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via kernel SSDT hooks to the 1 NtCreateKey and 2 NtOpenKey Windows Native API functions...
CVE-2007-4971
ProSecurity 1.40 Beta 2 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via kernel SSDT hooks for Windows Native API functions including 1 NtCreateKey,...
CVE-2007-4972
RegMon 7.04 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via kernel SSDT hooks to the 1 NtCreateKey and 2 NtOpenKey Windows Native API functions...
Plague in (security) software drivers & BSDOhook utility
Hello, We have found number of vulnerabilities in implementations of SSDT hooks in many different products. Vulnerable software: BlackICE PC Protection 3.6.cqn G DATA InternetSecurity 2007 Ghost Security Suite beta 1.110 and alpha 1.200 Kaspersky Internet Security 7.0.0.125 Norton Internet Securi...
Kaspersky Internet Security 6.0 - SSDT Hooks Multiple Local Vulnerabilities
source: https://www.securityfocus.com/bid/24491/info Kaspersky Internet Security 6 is prone to multiple local vulnerabilities. Exploiting these vulnerabilities allows local attackers to crash affected computers, denying service to legitimate users. Attackers might also be able to gain elevated...