360 safe Multiple IOCTL Request Local Privilege Escalation Vulnerabilities
BID:39940
Info
360 safe Multiple IOCTL Request Local Privilege Escalation Vulnerabilities
| Bugtraq ID: | 39940 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | May 05 2010 12:00AM |
| Updated: | May 05 2010 12:00AM |
| Credit: | NT Internals |
| Vulnerable: |
360.cn 360 safe 3.0.0.1010 |
| Not Vulnerable: | |
Discussion
360 safe Multiple IOCTL Request Local Privilege Escalation Vulnerabilities
360 safe is prone to multiple local privilege-escalation vulnerabilities.
A local attacker can exploit these issue to execute arbitrary code with elevated privileges, which may facilitate a compromise of the affected computer. Failed attempts may result in a denial of service condition.
360 safe 3.0.0.1010 is vulnerable; other versions may be affected.
360 safe is prone to multiple local privilege-escalation vulnerabilities.
A local attacker can exploit these issue to execute arbitrary code with elevated privileges, which may facilitate a compromise of the affected computer. Failed attempts may result in a denial of service condition.
360 safe 3.0.0.1010 is vulnerable; other versions may be affected.
Exploit / POC
360 safe Multiple IOCTL Request Local Privilege Escalation Vulnerabilities
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]
Solution / Fix
360 safe Multiple IOCTL Request Local Privilege Escalation Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
360 safe Multiple IOCTL Request Local Privilege Escalation Vulnerabilities
References:
References:
- Vendor - Homepage (360.cn)