회원가입메일  
   
 
> 취약성 정보
이름 Level 2, 645 Point bokdong2 2007-04-02 16:25:08
제목 Norton Multiple insufficient argument validation of hooked SSDT function Vulnerability
Basic information:

Release date: April 01, 2007

Last update: April 01, 2007

Type: Implementation bugs

Character: System crash

Status: Unpatched bugs

Risk: Serious bugs

Exploitability: Locally exploitable bugs

Discoverability: Medium discoverable bugs

Testing program: BTP00000P002NF.zip

Descri-ption:

Hooking SSDT functions requires extra caution. SSDT function handlers are executed in the kernel mode but their callers are executed in the user mode. Hence all function arguments come from the user mode. This is why it is necessary to validate these arguments properly. Otherwise a simple user call can easily crash the whole system. This bug usually results in a system crash. However, it may happen that this bug is even more dangerous and may lead to the execution of an arbitrary code in the privileged kernel mode.

Symantec Norton Personal Firewall hooks many functions in SSDT and in at least two cases it fails to validate arguments that come from the user mode. User calls to NtCreateMutant and NtOpenEvent with invalid argument values can cause system crashes because of errors in Norton driver SPBBCDrv.sys. Further impacts of this bug (like arbitrary code execution in the kernel mode) were not examined.
Vulnerable software:

    * Norton Personal Firewall 2006 version 9.1.1.7
    * Norton Personal Firewall 2006 version 9.1.0.33
    * probably all versions of Norton Personal Firewall 2006, Norton Internet Security 2006 and other products that use SPBBCDrv driver
    * possibly older versions of Norton Personal Firewall and Norton Internet Security

Events:

    * 2007-04-01: Advisory released
    * 2007-04-01: Vendor notification

References:

    * Symantec Norton Personal Firewall
http://www.symantec.com/home_homeoffice/products/overview.jsp?pcid=is&pvid=npf2006
    * Windows Personal Firewall Analysis project
http://www.matousec.com/projects/windows-personal-firewall-analysis/
    * Review of Norton Personal Firewall 2006
http://www.matousec.com/projects/windows-personal-firewall-analysis/Norton-Personal-Firewall-2006-version-9.1.0.33/
version 9.1.0.33
Level 6, 3710 Point ugg boots
Good ! Ilike it ! Welcome to read following news:<A href="http://www.shoppingnikesb.com/">cheap nike dunks</A>,<A href="http://www.uggsvipshop.com/ugg-bailey-button-boots.html">UGG Bailey Button boots</A>,<STRONG><A style="COLOR: #7fff7f" href="http://www.shoppingnikesb.com/">Nike dunk sb</A></STRONG>,<STRONG><A href="http://www.uggsvipshop.com/">Ugg boots</A></STRONG>,<STRONG><A href="http://www.hothotshoes.com/">Gucci shoes</A></STRONG>,<A href="http://www.shoppingnikesb.com/new-sb">new nike sb</A>,<A href="http://www.uggsvipshop.com/ugg-classic-short-boots.html">UGG Classic short boots</A>,<A href="http://www.shoppingtiffany.com/tiffany-rings">tiffany rings</A>,<A href="http://www.shoppingnikesb.com/nike-dunk-low">nike dunk low</A>,<A href="http://www.shoppingtiffany.com/tiffany-earrings">Tiffany Earrings</A>.

 2009.09.22 00:25

 

Level 6, 3710 Point ugg boots
Good ! Ilike it ! Welcome to read following news:<STRONG><A href="http://www.shoppingnikesb.com/">cheap nike dunks</A></STRONG>, <STRONG><A href="http://www.uggsvipshop.com/">ugg boots</A></STRONG>, <STRONG><A href="http://www.theuggsale.com/">ugg boots sale</A></STRONG>, <STRONG><A href="http://www.shoppingnikesb.com/">Nike dunk sb</A></STRONG>, <STRONG><A href="http://www.uggsvipshop.com/">discount ugg boots</A></STRONG>, <A href="http://www.uggsvipshop.com/ugg-bailey-button-boots.html">UGG Bailey Button boots</A>, <A href="http://www.shoppingnikesb.com/new-sb">new nike sb</A>, <A href="http://www.uggsvipshop.com/ugg-classic-short-boots.html">UGG Classic short boots</A>, <A href="http://www.theuggsale.com/ugg-nightfall-boots-c-4.html">UGG Nightfall boots</A> <A href="http://www.shoppingnikesb.com/nike-dunk-low">nike dunk low</A>, <A href="http://www.theuggsale.com/ugg-classic-tall-boots-c-3.html">UGG Classic tall boots</A>.

 2009.09.23 02:23

 

Level 3, 835 Point jkl338810
<a href="http://www.taipeilady.com" title="酒店兼差">酒店兼差</a> <a href="http://www.mashow.org/momo" title="酒店兼職">酒店兼職</a> <a href="http://www.mashow.org/girls" title="酒店工作">酒店工作</a> <a href="http://mypaper.pchome.com.tw/jkl338811" title="酒店上班">酒店上班</a> <a href="http://mypaper.pchome.com.tw/jkl338812" title="寒假打工">寒假打工</a> <a href="http://www.mashow.org" title="暑假打工">暑假打工</a> <a href="http://mypaper.pchome.com.tw/jkl338801" title="酒店">酒店</a> <a href="http://mypaper.pchome.com.tw/thomsan" title="禮服酒店">禮服酒店</a> <a href="http://tw.myblog.yahoo.com/jw!BIBoU5SeBRs21nb_ajFpncbTqXds" title="合法酒店經紀">合法酒店經紀</a> <a href="http://tw.myblog.yahoo.com/jw!qZ9n..6QEhhc0LkItOBm" title="兼差">兼差</a> <a href="http://www.mashow.org/emma" title="台北酒店經紀">台北酒店經紀</a> <a href="http://blog.xuite.net/jkl338801/blog" title="酒店經紀">酒店經紀</a> <a href="http://www.mashow.org/emilie" title="酒店打工">酒店打工</a> <a href="http://www.mashow.org/club" title="喝酒">喝酒</a> <a href="http://www.mashow.org/ktv" title="酒店消費">酒店消費</a> <a href="http://www.mashow.org/club" title="制服酒店">制服酒店</a> <a href="http://www.mashow.org/ktv" title="酒店喝酒">酒店喝酒</a>

 2009.12.24 16:24

 

목록
1017 Linux Kernel < 2.6.37-rc2..  Level 9, 8750 Point nesk 2010.12.20 38483
1016 Linux Kernel <= 2.6.37 Lo..  Level 9, 8750 Point nesk 2010.12.10 34442
1015 Local Root Privilege Esca..  Level 9, 8750 Point nesk 2010.11.26 34830
1014 Windows Task Scheduler Pr..  Level 9, 8750 Point nesk 2010.11.21 36711
1013 Internet Explorer CSS Tag.. [1]  Level 9, 8750 Point nesk 2010.11.07 17460
1012 Adobe Shockwave player rc..  Level 9, 8750 Point nesk 2010.10.22 6988
1011 Linux RDS Protocol Local ..  Level 9, 8750 Point nesk 2010.10.20 8147
1010 ASP.NET Padding Oracle Vu..  Level 9, 8750 Point nesk 2010.10.11 8532
1009 Iphone pdf 취약성 (by Autoly.. [3]  Level 14, 20240 Point hinehong 2010.08.18 8709
1008 Norton Multiple insuffici.. [27]  Level 2, 645 Point bokdong2 2007.04.02 16181
1007 SignKorea's ActiveX Buff.. [42]  Level 2, 645 Point bokdong2 2007.03.27 18322
1006 Symantec Mail Security fo.. [4]  Level 5, 3065 Point RiceBox 2007.03.02 7872
1005 McAfee VirusScan Virex 불안.. [2]  Level 4, 1440 Point avy 2007.02.28 7664
1004 Microsoft XBox 360 권한 상승 .. [3]  Level 4, 1440 Point avy 2007.02.28 7419
1003 Windows Shell User Logon .. [5]  Level 4, 1440 Point avy 2007.02.26 7719
1002 아래한글에서 심각한 보안취약점이 발견됨에 따라.. [6]  Level 2, 645 Point bokdong2 2007.02.20 11443
1001 MIMEDefang 불특정 버퍼 오버플로우 취.. [3]  Level 4, 1440 Point avy 2007.02.12 7365
1000 Sun Solaris Telnet 원격 인증 .. [8]  Level 4, 1440 Point avy 2007.02.12 8681
999 Microsoft Help Workshop C.. [6]  Level 12, 12970 Point hkpco 2007.01.18 8116
998 Internet Explorer 7 팝업 어드.. [2]  Level 5, 3065 Point RiceBox 2006.10.27 6076
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10