CVE-2016-8732

Multiple security flaws exists in InvProtectDrv.sys which is a part of Invincea Dell Protected Workspace 5.1.1-22303. Weak restrictions on the driver communication channel and additional insufficient checks allow any application to turn off some of the protection mechanisms provided by the Invincea product.
References
Link Resource
http://www.securityfocus.com/bid/99360 Broken Link Third Party Advisory VDB Entry
https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0246 Exploit Technical Description Third Party Advisory
http://www.securityfocus.com/bid/99360 Broken Link Third Party Advisory VDB Entry
https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0246 Exploit Technical Description Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:sophos:invincea_dell_protected_workspace:5.1.1-22303:*:*:*:*:*:*:*

History

21 Nov 2024, 02:59

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/99360 - Broken Link, Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/99360 - Broken Link, Third Party Advisory, VDB Entry
References () https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0246 - Exploit, Technical Description, Third Party Advisory () https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0246 - Exploit, Technical Description, Third Party Advisory

Information

Published : 2018-04-24 19:29

Updated : 2024-11-21 02:59


NVD link : CVE-2016-8732

Mitre link : CVE-2016-8732

CVE.ORG link : CVE-2016-8732


JSON object : View

Products Affected

sophos

  • invincea_dell_protected_workspace
CWE
CWE-275

Permission Issues