Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Rising Antivirus 2008 before 20.38.20 allows local users to cause a denial of service (system crash) via an invalid pointer to the _CLIENT_ID structure in a call to the NtOpenProcess hooked System Service Descriptor Table (SSDT) function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
瑞星杀毒软件SSDT NtOpenProcess()钩子本地拒绝服务漏洞
Vulnerability Description
瑞星是中国的一家非常著名的杀毒软件厂商。 瑞星的驱动实现上存在漏洞,本地攻击者可能利用此漏洞导致系统崩溃。 瑞星杀毒软件的NtOpenProcess钩子没有验证以下结构的指针: /----------- typedef struct _CLIENT_ID { HANDLE UniqueProcess; HANDLE UniqueThread;} - -----------/ 是否指向了所映射的内存,当代码试图引用指针检查CLIENT_ID->UniqueProcess值时,如果指向了无效的内存,系统就会崩
CVSS Information
N/A
Vulnerability Type
N/A