Sophos Anti-Virus 'NtQueryAttributesFile()' System Call Local Privilege Escalation Vulnerability

Bugtraq ID: 40715
Class: Design Error
CVE:
Remote: No
Local: Yes
Published: Jun 09 2010 12:00AM
Updated: Jun 09 2010 12:00AM
Credit: Cody Pierce of TippingPoint DVLabs
Vulnerable: Sophos Anti-Virus for Windows 2000 7.6.6
Sophos Anti-Virus for Windows 7.6.8
Sophos Anti-Virus for Windows 7.6.7
Sophos Anti-Virus for Windows 7.6.6
Sophos Anti-Virus for Windows 7.6.3
Sophos Anti-Virus for Windows 4.7.23
Sophos Anti-Virus for Windows 4.7.22
Sophos Anti-Virus for Windows 0
Sophos Anti-Virus Engine 2.49
Sophos Anti-Virus Engine 2.30.4
Sophos Anti-Virus 6.5.8
Sophos Anti-Virus 6.5.4 R2
Sophos Anti-Virus 6.5
Sophos Anti-Virus 5.2.1
Sophos Anti-Virus 5.2
Sophos Anti-Virus 5.0.4
Sophos Anti-Virus 5.0.2
Sophos Anti-Virus 5.0.1
Sophos Anti-Virus 4.7.2
Sophos Anti-Virus 4.7.1
Sophos Anti-Virus 4.5.12
Sophos Anti-Virus 4.5.11
Sophos Anti-Virus 4.5.4
Sophos Anti-Virus 4.5.3
Sophos Anti-Virus 3.96 .0
Sophos Anti-Virus 3.95
Sophos Anti-Virus 3.91
Sophos Anti-Virus 3.90
Sophos Anti-Virus 3.86
Sophos Anti-Virus 3.85
Sophos Anti-Virus 3.84
Sophos Anti-Virus 3.83
Sophos Anti-Virus 3.82
Sophos Anti-Virus 3.81
Sophos Anti-Virus 3.80
Sophos Anti-Virus 3.79
Sophos Anti-Virus 7.05
Sophos Anti-Virus 7.01
Sophos Anti-Virus 7.0
Sophos Anti-Virus 6.0
Sophos Anti-Virus 5.1
Sophos Anti-Virus 4.05
Sophos Anti-Virus 4.04
Not Vulnerable: Sophos Anti-Virus 7.6.20
Sophos Anti-Virus 9


 

Privacy Statement
Copyright 2010, SecurityFocus