Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The ProcessVolumeDeviceControlIrp function in Ntdriver.c in TrueCrypt 7.1a allows local users to bypass access restrictions and obtain sensitive information about arbitrary files via a (1) TC_IOCTL_OPEN_TEST or (2) TC_IOCTL_GET_SYSTEM_DRIVE_CONFIG IOCTL call.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TrueCrypt 安全漏洞
Vulnerability Description
TrueCrypt是一款开源的虚拟加密盘加密软件,不需要生成任何文件即可在硬盘上建立虚拟磁盘。 TrueCrypt 7.1a版本中的Ntdriver.c文件的‘ProcessVolumeDeviceControlIrp’函数存在安全漏洞。本地攻击者可借助TC_IOCTL_OPEN_TEST或TC_IOCTL_GET_SYSTEM_DRIVE_CONFIG IOCTL调用利用该漏洞绕过访问限制并获取有关任意文件的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A