Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The nvcoaft51 driver in Norman Virus Control (NVC) 5.82 uses weak permissions (unrestricted write access) for the NvcOa device, which allows local users to gain privileges by (1) triggering a buffer overflow in a kernel pool via a string argument to ioctl 0xBF67201C; or by (2) sending a crafted KEVENT structure through ioctl 0xBF672028 to overwrite arbitrary memory locations.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Norman Virus Control 缓冲区溢出漏洞
Vulnerability Description
Norman Virus Control (NVC) 5.82版本的nvcoaft51驱动器运行NvcOa驱动器的弱许可信息(无限制写入访问)。这会允许本地用户(1)可以借助对ioctl 0xBF67201C的一个字符串自变量,触发kernel pool中的缓冲区溢出 ;或 (2) 通过0xBF672028发送一个特制的 KEVENT结构 ioctl写入任意内存位置,以获得特权。
CVSS Information
N/A
Vulnerability Type
N/A