Panda Endpoint Administration Agent allows a local attacker to elevate his privileges from any account type and execute code as SYSTEM, thus completely compromising the affected host, as described in CVE-2016-3943.
Author Archive for: Kyriakos Economou
About Kyriakos Economou
This author has yet to write their bio.Meanwhile lets just say that we are proud Kyriakos Economou contributed a whooping 22 entries.
Entries by Kyriakos Economou
Several SafeNet Authentication Service Agents could allow a local attacker to obtain privilege escalation due to weak ACLs assigned to subdirectories and executable modules of those products. A user with low privileges could modify and/or substitute executable modules which a high privileged user could later execute in their own security context. Further detail A PDF […]
CVE-2015-8620 We discovered this vulnerability in the Avast Virtualization driver (aswSnx.sys) that handles some of the ‘Sandbox’ and ‘DeepScreen’ functionality of all the Avast Windows products. We initially found this issue in versions 10.x (10.4.2233.1305) of those products and later confirmed that the latest 11.x versions were still affected by this issue up to, and […]
CVE: CVE-2015-8772 Vendor: McAfee – Intel Security Reported by: Kyriakos Economou Date of Release: 26/01/2016 Date of Fix: N/A Affected Products: Multiple Affected Version: McPvDrv.sys v22.214.171.124 Fixed Version: N/A Description: McAfee File Lock Driver does not handle correctly IOCTL_DISK_VERIFY IOCTL requests, which leads to kernel memory leak through specifically crafted IOCTLs. Normally the IOCTL_DISK_VERIFY IOCTL […]