Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In MADEFORNET HTTP Debugger through 9.12, the Windows service does not set the seclevel registry key before launching the driver. Thus, it is possible for an unprivileged application to obtain a handle to the NetFilterSDK wrapper before the service obtains exclusive access.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MADEFORNET HTTP Debugger 竞争条件问题漏洞
Vulnerability Description
MADEFORNET HTTP Debugger是爱沙尼亚MADEFORNET公司的一个旗舰产品,可帮助 Web 开发人员、IT 经理以及系统和网络管理员定位和消除网站错误并识别性能瓶颈。 MADEFORNET HTTP Debugger 9.12及之前版本存在安全漏洞,该漏洞源于Windows 服务在启动驱动程序之前不会设置 seclevel 注册表项,导致非特权应用程序有可能在服务获得独占访问权限之前获得 NetFilterSDK 包装器的句柄。
CVSS Information
N/A
Vulnerability Type
N/A