ProSecurity 1.40 Beta 2 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via kernel SSDT hooks for Windows Native API functions including (1) NtCreateKey, (2) NtDeleteFile, (3) NtLoadDriver, (4) NtOpenSection, and (5) NtSetSystemTime.
References
Configurations
History
21 Nov 2024, 00:36
Type | Values Removed | Values Added |
---|---|---|
References | () http://osvdb.org/45956 - | |
References | () http://www.matousec.com/info/advisories/plague-in-security-software-drivers.php - | |
References | () http://www.matousec.com/projects/windows-personal-firewall-analysis/plague-in-security-software-drivers.php - | |
References | () http://www.securityfocus.com/archive/1/479830/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/25718 - |
Information
Published : 2007-09-19 01:17
Updated : 2024-11-21 00:36
NVD link : CVE-2007-4971
Mitre link : CVE-2007-4971
CVE.ORG link : CVE-2007-4971
JSON object : View
Products Affected
isecsoft
- prosecurity
CWE
CWE-20
Improper Input Validation