exploitDog

CVE-2007-4967

Опубликовано: 19 сент. 2007

Источник: nvd

CVSS2: 4.4

EPSS Низкий

Описание

Online Armor Personal Firewall 2.0.1.215 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via unspecified kernel SSDT hooks for Windows Native API functions including (1) NtAllocateVirtualMemory, (2) NtConnectPort, (3) NtCreateFile, (4) NtCreateKey, (5) NtCreatePort, (6) NtDeleteFile, (7) NtDeleteValueKey, (8) NtLoadKey, (9) NtOpenFile, (10) NtOpenProcess, (11) NtOpenThread, (12) NtResumeThread, (13) NtSetContextThread, (14) NtSetValueKey, (15) NtSuspendProcess, (16) NtSuspendThread, and (17) NtTerminateThread.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:online_armor:personal_firewall:2.0.1.215:*:*:*:*:*:*:*

EPSS

Процентиль: 20%

0.00063

Низкий

4.4 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-3wxc-cg64-x24r

github

почти 4 года назад

Online Armor Personal Firewall 2.0.1.215 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via unspecified kernel SSDT hooks for Windows Native API functions including (1) NtAllocateVirtualMemory, (2) NtConnectPort, (3) NtCreateFile, (4) NtCreateKey, (5) NtCreatePort, (6) NtDeleteFile, (7) NtDeleteValueKey, (8) NtLoadKey, (9) NtOpenFile, (10) NtOpenProcess, (11) NtOpenThread, (12) NtResumeThread, (13) NtSetContextThread, (14) NtSetValueKey, (15) NtSuspendProcess, (16) NtSuspendThread, and (17) NtTerminateThread.

EPSS

Процентиль: 20%

0.00063

Низкий

4.4 Medium

CVSS2

Дефекты

CWE-20