Ghost Security Suite SSDT Hooks Multiple Local Vulnerabilities
BID:25709
Info
Ghost Security Suite SSDT Hooks Multiple Local Vulnerabilities
| Bugtraq ID: | 25709 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Sep 18 2007 12:00AM |
| Updated: | Sep 18 2007 09:30PM |
| Credit: | Matousec Transparent Security Research discovered these vulnerabilities. |
| Vulnerable: |
Ghost Security Security Suite 1.200 alpha Ghost Security Security Suite 1.110 beta |
| Not Vulnerable: | |
Discussion
Ghost Security Suite SSDT Hooks Multiple Local Vulnerabilities
Ghost Security Suite is prone to multiple local vulnerabilities.
Exploiting these vulnerabilities allows local attackers to crash affected computers, denying service to legitimate users. Attackers might also be able to gain elevated privileges by executing arbitrary machine code in the context of the kernel, but this has not been confirmed.
Ghost Security Suite beta 1.110 and alpha 1.200 are vulnerable; other versions may also be affected.
Ghost Security Suite is prone to multiple local vulnerabilities.
Exploiting these vulnerabilities allows local attackers to crash affected computers, denying service to legitimate users. Attackers might also be able to gain elevated privileges by executing arbitrary machine code in the context of the kernel, but this has not been confirmed.
Ghost Security Suite beta 1.110 and alpha 1.200 are vulnerable; other versions may also be affected.
Exploit / POC
Ghost Security Suite SSDT Hooks Multiple Local Vulnerabilities
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
Ghost Security Suite SSDT Hooks Multiple Local Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
Ghost Security Suite SSDT Hooks Multiple Local Vulnerabilities
References:
References:
- Vendor Homepage (Ghost Security)
- Windows Personal Firewall Analysis (Matousec)
- Plague in (security) software drivers & BSDOhook utility (Matousec)