NVD

Id
57127  
Name
CVE-2007-5039  
Description
Ghost Security Suite beta 1.110 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the (1) NtCreateKey, (2) NtDeleteValueKey, (3) NtQueryValueKey, (4) NtSetSystemInformation, and (5) NtSetValueKey kernel SSDT hooks.  
Reject
 
CVSS Version
2  
CVSS Score
2.1  
Severity
Low  
CVSS Base Score
2.1  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-07  
Published
2007-09-23  
Modified Date
2008-11-15  
Seq
2007-5039  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
291701 57127 CVE-2007-5039 3161  View
291702 57127 CVE-2007-5039 http://www.matousec.com/info/advisories/plague-in-security-software-drivers.php  View
291703 57127 CVE-2007-5039 http://www.matousec.com/projects/windows-personal-firewall-analysis/plague-in-security-software-drivers.php  View
291704 57127 CVE-2007-5039 20070918 Plague in (security) software drivers & BSDOhook utility  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
53979 JVNDB-2007-002671 Ghost Security Suite beta におけるサービス運用妨害 (DoS) の脆弱性 Ghost Security Suite beta は、System Service Descriptor Table (SSDT) 関数ハンドラへの特定のパラメータを適切に検証しないため、サービス運用妨害 (クラッシュ) 状態となる、および権限を取得される脆弱性が存在します。 CVE-2007-5039 28394 CVE-2007-5039 57127 2.1 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-002671.html 2007-09-23 2012-06-26 View