CVE-2022-23253 is a Windows VPN (remote access service) denial of service vulnerability that Nettitude discovered while fuzzing the Windows Server Point-to-Point Tunnelling Protocol (PPTP) driver. The implications of this vulnerability are that it [...]
This year we're documenting a series of new and as-yet undocumented VM detection tricks. These detection tricks will be focused on 64-bit Windows 10 or Windows Server 2019 guests, targeting a variety of [...]
We recently discovered a new and quietly released Windows kernel exploitation defence. Exploiting a kernel bug by setting the pointer to the SecurityDescriptor to NULL in the header of a process object running [...]
CVE-2015-8620 We discovered this vulnerability in the Avast Virtualization driver (aswSnx.sys) that handles some of the ‘Sandbox’ and ‘DeepScreen’ functionality of all the Avast Windows products. We initially found this issue in versions [...]
CVE: CVE-2015-8772 Vendor: McAfee - Intel Security Reported by: Kyriakos Economou Date of Release: 26/01/2016 Date of Fix: N/A Affected Products: Multiple Affected Version: McPvDrv.sys v4.6.111.0 Fixed Version: N/A Description: McAfee File Lock [...]
CVE: CVE-2015-8773 Vendor: McAfee - Intel Security Reported by: Kyriakos Economou Date of Release: 26/01/2016 Date of Fix: N/A Affected Products: Multiple Affected Version: McPvDrv.sys v4.6.111.0 Fixed Version: N/A Description: McAfee File Lock [...]