Showing 1 - 8 of 8

Files from David Matousek

SunbeltKerio.txt: Posted Oct 4, 2006; Authored by David Matousek | Site matousec.com; Sunbelt Kerio Personal Firewall hooks many functions in SSDT and in at least six cases it fails to validate arguments that come from user mode. User calls to NtCreateFile, NtDeleteFile, NtLoadDriver, NtMapViewOfSection, NtOpenFile, NtSetInformationFile with invalid argument values can cause system crashes because of errors in Kerio drivers fwdrv.sys and khips.sys. Further impacts of this bug (like arbitrary code execution in the kernel mode) were not examined.; tags | advisory, arbitrary, kernel, code execution; SHA-256 | 48b36a564e08298f7399b3ffc2aea164592dc780e90f026e72acc165c229fee6; Download | Favorite | View

BTP00011P002NF.zip: Posted Sep 16, 2006; Authored by David Matousek | Site matousec.com; Testing program that checks for an insufficient validation flaw in the "SymEvent" driver input buffer in Norton Personal Firewall 2006 version 9.1.0.33.; tags | exploit; SHA-256 | 6142c7d7e49020be09f24de4def0eb42eef262aec8d49a1d936f6dc8bbe73f7f; Download | Favorite | View

norton91033.txt: Posted Sep 16, 2006; Authored by David Matousek | Site matousec.com; Norton insufficiently protects its driver '\Device\SymEvent' against manipulation from malicious applications and it fails to validate its input buffer.; tags | advisory; SHA-256 | 6b85048dc98dd8c7e77dace699b1ca0ce1382f547a60a5f92c7709c883ccf21b; Download | Favorite | View

blackICEpc.txt: Posted Sep 7, 2006; Authored by David Matousek | Site matousec.com; BlackICE PC Protection suffers from a denial of service condition when failing to validate the third argument of NtOpenSection.; tags | advisory, denial of service; SHA-256 | ad322b0aa27a0e340d007804e6b45dbbe64dff3993b8fba713250eda73ce27a1; Download | Favorite | View

BTP00010P002NF.zip: Posted Aug 27, 2006; Authored by David Matousek | Site matousec.com; Demonstration exploit for Norton that shows how registry key protection can be bypassed.; tags | exploit, registry; SHA-256 | f48bd87c197804d45956178a503c7b286555b093bb03cb5b92fc5cdb28204378; Download | Favorite | View

matousec-2006-08-15.01.txt: Posted Aug 27, 2006; Authored by David Matousek | Site matousec.com; Norton protects its own registry keys against actions of other applications. This protection can be bypassed for registry key 'HKLM\SOFTWARE\Symantec\CCPD\SuiteOwners' using API functions RegSaveKey and RegRestoreKey.; tags | advisory, registry; SHA-256 | f7afbb4f4af173ea5d04c566e42a8d2d42116a1523e21ffcb16af67d89408b99; Download | Favorite | View

BTP00022P003BI.zip: Posted Aug 17, 2006; Authored by David Matousek | Site matousec.com; Test exploit that was built to demonstrate an inability in BlackICE to protect pamversion.dll.; tags | exploit; SHA-256 | ad129e42f141e134089554385e33fb216e5302fc307a5c6c229aaa1045b6ce9c; Download | Favorite | View

matousec-2006-08-01.01.txt: Posted Aug 17, 2006; Authored by David Matousek | Site matousec.com; BlackICE does not protect pamversion.dll in its installation directory and because component protection fails to protect BlackICE processes this can be misused to inject a fake DLL into BlackICE service.; tags | advisory; SHA-256 | 91b50a33f2fdb9350d7974f8965ac76e6398400c864849ded4a9489604966256; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days