Test Kennung:	1.3.6.1.4.1.25623.1.0.805453
Kategorie:	Privilege escalation
Titel:	K7 Ultimate Security Privilege Escalation Vulnerabilities (Feb 2015) - Windows
Zusammenfassung:	K7 Ultimate Security is prone to a privilege escalation vulnerability.
Beschreibung:	Summary: K7 Ultimate Security is prone to a privilege escalation vulnerability. Vulnerability Insight: The flaw is due to a write-what-where flaw in K7Sentry.sys in K7 Computing products that is triggered when handling certain IOCTL calls. Vulnerability Impact: Successful exploitation will allow a local attacker to write controlled data to any memory location and execute code with kernel-level privileges. Affected Software/OS: K7 Ultimate Security before 14.2.0.253 on Windows. Solution: Upgrade to K7 Ultimate Security version 14.2.0.253 or later. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-9643 http://www.exploit-db.com/exploits/35992 http://packetstormsecurity.com/files/130246/K7-Computing-14.2.0.240-Privilege-Escalation.html http://www.greyhathacker.net/?p=818 http://www.osvdb.org/113007
Copyright	Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.