CommView 'cv2k1.sys' Driver Local Denial of Service Vulnerability
BID:39705
Info
CommView 'cv2k1.sys' Driver Local Denial of Service Vulnerability
| Bugtraq ID: | 39705 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 26 2010 12:00AM |
| Updated: | Apr 27 2010 04:52PM |
| Credit: | p4r4noid |
| Vulnerable: |
TamoSoft CommView 6.1 Build 636 |
| Not Vulnerable: |
TamoSoft CommView 6.1 Build 644 |
Discussion
CommView 'cv2k1.sys' Driver Local Denial of Service Vulnerability
CommView is prone to a local denial-of-service vulnerability.
Successful exploits will allow attackers to cause a local denial-of-service condition; other attacks may be possible.
The issue affects versions prior to CommView 6.1 Build 644.
CommView is prone to a local denial-of-service vulnerability.
Successful exploits will allow attackers to cause a local denial-of-service condition; other attacks may be possible.
The issue affects versions prior to CommView 6.1 Build 644.
Exploit / POC
CommView 'cv2k1.sys' Driver Local Denial of Service Vulnerability
Attackers can use standard tools to exploit this issue.
The following example is available:
Attackers can use standard tools to exploit this issue.
The following example is available:
Solution / Fix
CommView 'cv2k1.sys' Driver Local Denial of Service Vulnerability
Solution:
Updates are available. Please see the references for more information.
TamoSoft CommView 6.1 Build 636
Solution:
Updates are available. Please see the references for more information.
TamoSoft CommView 6.1 Build 636
-
TamoSoft CommView 6.1 Build 644
http://www.tamos.com/bitrix/redirect.php?event1=download&event2=commvi ew&event3=cv6&goto=/files/cv6.zip
References
CommView 'cv2k1.sys' Driver Local Denial of Service Vulnerability
References:
References: