Описание
Multiple serious vulnerabilities have been found in SUPERAntiSpyware. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code and gain privileges. Below is a complete list of vulnerabilities
- Unsafe buffers, function parameter handling, unsafe pointer handling or unsafe reading from registers can be exploited locally;
- Unsafe array handling can be exploited locally via surplus application starts;
- Vectors related to the Kernel mode can be exploited via registry reading;
- Lack of access restrictions in tokens can be exploited via token data redaction;
- Unsafe granting of privileges can be exploited via manipulations of the token data.
Первичный источник обнаружения
Связанные продукты
Список CVE
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!