Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiAnonymousZDI-16-007
HistoryJan 08, 2016 - 12:00 a.m.

McAfee Application Control Kernel Driver Memory Corruption Privilege Escalation Vulnerability

2016-01-0800:00:00
Anonymous
www.zerodayinitiative.com
26

EPSS

0.001

Percentile

37.3%

JSON

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of McAfee Application Control. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within processing of syscall 768 in the swin.sys kernel driver. A malicious call can write a 0 to an arbitrary address in kernel memory. An attacker can leverage this vulnerability to execute arbitrary code in the context of SYSTEM.

Related

nessus 1
cvelist 1
openvas 1
prion 1
cve 1
nvd 1
nessus
nessus
McAfee Application Control swin.sys Memory Corruption (SB10145)
2016-01-14 00:00:00
cvelist
cvelist
CVE-2016-1715
2016-01-12 20:00:00
openvas
openvas
McAfee Application Control Multiple Vulnerabilities (Jan 2016) - Windows
2016-01-20 00:00:00
prion
prion
Memory corruption
2016-01-12 20:59:00
cve
cve
CVE-2016-1715
2016-01-12 20:59:11
nvd
nvd
CVE-2016-1715
2016-01-12 20:59:11

EPSS

0.001

Percentile

37.3%

JSON
Related for ZDI-16-007
nessus1cvelist1openvas1prion1cve1nvd1