Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Sandbox.sys driver in Outpost Firewall PRO 4.0, and possibly earlier versions, does not validate arguments to hooked SSDT functions, which allows local users to cause a denial of service (crash) via invalid arguments to the (1) NtAssignProcessToJobObject,, (2) NtCreateKey, (3) NtCreateThread, (4) NtDeleteFile, (5) NtLoadDriver, (6) NtOpenProcess, (7) NtProtectVirtualMemory, (8) NtReplaceKey, (9) NtTerminateProcess, (10) NtTerminateThread, (11) NtUnloadDriver, and (12) NtWriteVirtualMemory functions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Outpost Firewall PRO Sandbox.sys驱动 多个本地拒绝服务漏洞
Vulnerability Description
Outpost Firewall PRO 4.0以及可能之前的版本中的Sandbox.sys驱动没有验证提交到钩状的SSDT函数的参数,这使得本地用户可以借助发送到(1)NtAssignProcessToJobObject,(2)NtCreateKey,(3)NtCreateThread,(4)NtDeleteFile,(5)NtLoadDriver,(6)NtOpenProcess,(7)NtProtectVirtualMemory,(8)NtReplaceKey,(9) NtTerminateProc
CVSS Information
N/A
Vulnerability Type
N/A