CVE-2006-7160
published 2007-03-07CVE-2006-7160: The Sandbox.sys driver in Outpost Firewall PRO 4.0, and possibly earlier versions, does not validate arguments to hooked SSDT functions, which allows local…
PriorityP413medium4.9CVSS 2.0
AVLACLAuNCNINAC
EPSS
0.36%
27.5th percentile
The Sandbox.sys driver in Outpost Firewall PRO 4.0, and possibly earlier versions, does not validate arguments to hooked SSDT functions, which allows local users to cause a denial of service (crash) via invalid arguments to the (1) NtAssignProcessToJobObject,, (2) NtCreateKey, (3) NtCreateThread, (4) NtDeleteFile, (5) NtLoadDriver, (6) NtOpenProcess, (7) NtProtectVirtualMemory, (8) NtReplaceKey, (9) NtTerminateProcess, (10) NtTerminateThread, (11) NtUnloadDriver, and (12) NtWriteVirtualMemory functions.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| agnitum | outpost_firewall | <= 4.0 | — |
| agnitum | outpost_firewall | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-fpw6-4rcx-6349: Outpost Firewall Pro 4
ghsa_unreviewed·2022-05-01·CVSS 4.9
CVE-2007-5042 [MEDIUM] GHSA-fpw6-4rcx-6349: Outpost Firewall Pro 4
Outpost Firewall Pro 4.0.1025.7828 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the (1) NtCreateKey, (2) NtDeleteFile, (3) NtLoadDriver, (4) NtOpenProcess, (5) NtOpenSection, (6) NtOpenThread, and (7) NtUnloadDriver kernel SSDT hooks, a partial regression of CVE-2006-7160.
GHSA
GHSA-78pc-3w8m-h368: The Sandbox
ghsa_unreviewed·2022-05-01
CVE-2006-7160 [MEDIUM] CWE-20 GHSA-78pc-3w8m-h368: The Sandbox
The Sandbox.sys driver in Outpost Firewall PRO 4.0, and possibly earlier versions, does not validate arguments to hooked SSDT functions, which allows local users to cause a denial of service (crash) via invalid arguments to the (1) NtAssignProcessToJobObject,, (2) NtCreateKey, (3) NtCreateThread, (4) NtDeleteFile, (5) NtLoadDriver, (6) NtOpenProcess, (7) NtProtectVirtualMemory, (8) NtReplaceKey, (9) NtTerminateProcess, (10) NtTerminateThread, (11) NtUnloadDriver, and (12) NtWriteVirtualMemory functions.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/22913http://securityreason.com/securityalert/2376http://www.matousec.com/info/advisories/Outpost-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.phphttp://www.securityfocus.com/archive/1/451672/100/0/threadedhttp://www.securityfocus.com/bid/21097http://www.vupen.com/english/advisories/2006/4537https://exchange.xforce.ibmcloud.com/vulnerabilities/30312http://secunia.com/advisories/22913http://securityreason.com/securityalert/2376http://www.matousec.com/info/advisories/Outpost-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.phphttp://www.securityfocus.com/archive/1/451672/100/0/threadedhttp://www.securityfocus.com/bid/21097http://www.vupen.com/english/advisories/2006/4537https://exchange.xforce.ibmcloud.com/vulnerabilities/30312
2007-03-07
Published