The dwall.sys driver in SoftSphere DefenseWall Personal Firewall 3.24 allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted 0x00222000, 0x00222004, 0x00222008, 0x0022200c, or 0x00222010 IOCTL call.
References
Configurations
History
21 Nov 2024, 02:25
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.exploit-db.com/exploits/36052 - Exploit | |
References | () http://www.osvdb.org/117996 - |
Information
Published : 2015-02-19 15:59
Updated : 2024-11-21 02:25
NVD link : CVE-2015-1515
Mitre link : CVE-2015-1515
CVE.ORG link : CVE-2015-1515
JSON object : View
Products Affected
softsphere
- defensewall_personal_firewall
CWE
CWE-264
Permissions, Privileges, and Access Controls