 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2010-1591 |
| Description: | Beijing Rising International Rising Antivirus 2008 through 2010 does not properly validate input to certain IOCTLs, including 0x83003C07, which allows local users to gain privileges via crafted IOCTL requests to the (1) HookCont.sys, (2) HookNtos.sys, (3) HOOKREG.sys, or (4) HookSys.sys device driver; or the (5) RsNTGdi.sys kernel module, reachable through \Device\RSNTGDI. |
| Test IDs: | 1.3.6.1.4.1.25623.1.0.800178 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2010-1591 BugTraq ID: 37951 http://www.securityfocus.com/bid/37951 http://www.ntinternals.org/ntiadv0805/ntiadv0805.html http://www.ntinternals.org/ntiadv0902/ntiadv0902.html http://osvdb.org/61946 http://secunia.com/advisories/38335 http://www.vupen.com/english/advisories/2010/0218 XForce ISS Database: rising-antivirus-drivers-priv-escalation(55869) https://exchange.xforce.ibmcloud.com/vulnerabilities/55869 |