회원가입메일  
   
 
> 취약성 정보
이름 Level 2, 645 Point bokdong2 2007-04-02 16:25:08
제목 Norton Multiple insufficient argument validation of hooked SSDT function Vulnerability
Basic information:

Release date: April 01, 2007

Last update: April 01, 2007

Type: Implementation bugs

Character: System crash

Status: Unpatched bugs

Risk: Serious bugs

Exploitability: Locally exploitable bugs

Discoverability: Medium discoverable bugs

Testing program: BTP00000P002NF.zip

Descri-ption:

Hooking SSDT functions requires extra caution. SSDT function handlers are executed in the kernel mode but their callers are executed in the user mode. Hence all function arguments come from the user mode. This is why it is necessary to validate these arguments properly. Otherwise a simple user call can easily crash the whole system. This bug usually results in a system crash. However, it may happen that this bug is even more dangerous and may lead to the execution of an arbitrary code in the privileged kernel mode.

Symantec Norton Personal Firewall hooks many functions in SSDT and in at least two cases it fails to validate arguments that come from the user mode. User calls to NtCreateMutant and NtOpenEvent with invalid argument values can cause system crashes because of errors in Norton driver SPBBCDrv.sys. Further impacts of this bug (like arbitrary code execution in the kernel mode) were not examined.
Vulnerable software:

    * Norton Personal Firewall 2006 version 9.1.1.7
    * Norton Personal Firewall 2006 version 9.1.0.33
    * probably all versions of Norton Personal Firewall 2006, Norton Internet Security 2006 and other products that use SPBBCDrv driver
    * possibly older versions of Norton Personal Firewall and Norton Internet Security

Events:

    * 2007-04-01: Advisory released
    * 2007-04-01: Vendor notification

References:

    * Symantec Norton Personal Firewall
http://www.symantec.com/home_homeoffice/products/overview.jsp?pcid=is&pvid=npf2006
    * Windows Personal Firewall Analysis project
http://www.matousec.com/projects/windows-personal-firewall-analysis/
    * Review of Norton Personal Firewall 2006
http://www.matousec.com/projects/windows-personal-firewall-analysis/Norton-Personal-Firewall-2006-version-9.1.0.33/
version 9.1.0.33
Level 6, 3710 Point ugg boots
Good ! Ilike it ! Welcome to read following news:<A href="http://www.shoppingnikesb.com/">cheap nike dunks</A>,<A href="http://www.uggsvipshop.com/ugg-bailey-button-boots.html">UGG Bailey Button boots</A>,<STRONG><A style="COLOR: #7fff7f" href="http://www.shoppingnikesb.com/">Nike dunk sb</A></STRONG>,<STRONG><A href="http://www.uggsvipshop.com/">Ugg boots</A></STRONG>,<STRONG><A href="http://www.hothotshoes.com/">Gucci shoes</A></STRONG>,<A href="http://www.shoppingnikesb.com/new-sb">new nike sb</A>,<A href="http://www.uggsvipshop.com/ugg-classic-short-boots.html">UGG Classic short boots</A>,<A href="http://www.shoppingtiffany.com/tiffany-rings">tiffany rings</A>,<A href="http://www.shoppingnikesb.com/nike-dunk-low">nike dunk low</A>,<A href="http://www.shoppingtiffany.com/tiffany-earrings">Tiffany Earrings</A>.

 2009.09.22 00:25

 

Level 6, 3710 Point ugg boots
Good ! Ilike it ! Welcome to read following news:<STRONG><A href="http://www.shoppingnikesb.com/">cheap nike dunks</A></STRONG>, <STRONG><A href="http://www.uggsvipshop.com/">ugg boots</A></STRONG>, <STRONG><A href="http://www.theuggsale.com/">ugg boots sale</A></STRONG>, <STRONG><A href="http://www.shoppingnikesb.com/">Nike dunk sb</A></STRONG>, <STRONG><A href="http://www.uggsvipshop.com/">discount ugg boots</A></STRONG>, <A href="http://www.uggsvipshop.com/ugg-bailey-button-boots.html">UGG Bailey Button boots</A>, <A href="http://www.shoppingnikesb.com/new-sb">new nike sb</A>, <A href="http://www.uggsvipshop.com/ugg-classic-short-boots.html">UGG Classic short boots</A>, <A href="http://www.theuggsale.com/ugg-nightfall-boots-c-4.html">UGG Nightfall boots</A> <A href="http://www.shoppingnikesb.com/nike-dunk-low">nike dunk low</A>, <A href="http://www.theuggsale.com/ugg-classic-tall-boots-c-3.html">UGG Classic tall boots</A>.

 2009.09.23 02:23

 

Level 3, 835 Point jkl338810
<a href="http://www.taipeilady.com" title="酒店兼差">酒店兼差</a> <a href="http://www.mashow.org/momo" title="酒店兼職">酒店兼職</a> <a href="http://www.mashow.org/girls" title="酒店工作">酒店工作</a> <a href="http://mypaper.pchome.com.tw/jkl338811" title="酒店上班">酒店上班</a> <a href="http://mypaper.pchome.com.tw/jkl338812" title="寒假打工">寒假打工</a> <a href="http://www.mashow.org" title="暑假打工">暑假打工</a> <a href="http://mypaper.pchome.com.tw/jkl338801" title="酒店">酒店</a> <a href="http://mypaper.pchome.com.tw/thomsan" title="禮服酒店">禮服酒店</a> <a href="http://tw.myblog.yahoo.com/jw!BIBoU5SeBRs21nb_ajFpncbTqXds" title="合法酒店經紀">合法酒店經紀</a> <a href="http://tw.myblog.yahoo.com/jw!qZ9n..6QEhhc0LkItOBm" title="兼差">兼差</a> <a href="http://www.mashow.org/emma" title="台北酒店經紀">台北酒店經紀</a> <a href="http://blog.xuite.net/jkl338801/blog" title="酒店經紀">酒店經紀</a> <a href="http://www.mashow.org/emilie" title="酒店打工">酒店打工</a> <a href="http://www.mashow.org/club" title="喝酒">喝酒</a> <a href="http://www.mashow.org/ktv" title="酒店消費">酒店消費</a> <a href="http://www.mashow.org/club" title="制服酒店">制服酒店</a> <a href="http://www.mashow.org/ktv" title="酒店喝酒">酒店喝酒</a>

 2009.12.24 16:24

 

목록
1017 Linux Kernel < 2.6.37-rc2..  Level 9, 8750 Point nesk 2010.12.20 38454
1016 Linux Kernel <= 2.6.37 Lo..  Level 9, 8750 Point nesk 2010.12.10 34421
1015 Local Root Privilege Esca..  Level 9, 8750 Point nesk 2010.11.26 34812
1014 Windows Task Scheduler Pr..  Level 9, 8750 Point nesk 2010.11.21 36693
1013 Internet Explorer CSS Tag.. [1]  Level 9, 8750 Point nesk 2010.11.07 17444
1012 Adobe Shockwave player rc..  Level 9, 8750 Point nesk 2010.10.22 6982
1011 Linux RDS Protocol Local ..  Level 9, 8750 Point nesk 2010.10.20 8141
1010 ASP.NET Padding Oracle Vu..  Level 9, 8750 Point nesk 2010.10.11 8524
1009 Iphone pdf 취약성 (by Autoly.. [3]  Level 14, 20240 Point hinehong 2010.08.18 8704
1008 Norton Multiple insuffici.. [27]  Level 2, 645 Point bokdong2 2007.04.02 16175
1007 SignKorea's ActiveX Buff.. [42]  Level 2, 645 Point bokdong2 2007.03.27 18317
1006 Symantec Mail Security fo.. [4]  Level 5, 3065 Point RiceBox 2007.03.02 7865
1005 McAfee VirusScan Virex 불안.. [2]  Level 4, 1440 Point avy 2007.02.28 7658
1004 Microsoft XBox 360 권한 상승 .. [3]  Level 4, 1440 Point avy 2007.02.28 7415
1003 Windows Shell User Logon .. [5]  Level 4, 1440 Point avy 2007.02.26 7712
1002 아래한글에서 심각한 보안취약점이 발견됨에 따라.. [6]  Level 2, 645 Point bokdong2 2007.02.20 11439
1001 MIMEDefang 불특정 버퍼 오버플로우 취.. [3]  Level 4, 1440 Point avy 2007.02.12 7360
1000 Sun Solaris Telnet 원격 인증 .. [8]  Level 4, 1440 Point avy 2007.02.12 8676
999 Microsoft Help Workshop C.. [6]  Level 12, 12970 Point hkpco 2007.01.18 8111
998 Internet Explorer 7 팝업 어드.. [2]  Level 5, 3065 Point RiceBox 2006.10.27 6071
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10