CVE-2010-4502
published 2010-12-08CVE-2010-4502: Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite Plus 2010 allows local users to cause a denial of service (pool corruption) and execute…
PriorityP335high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
1.16%
63.3th percentile
Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite Plus 2010 allows local users to cause a denial of service (pool corruption) and execute arbitrary code via crafted arguments to the 0x88000080 IOCTL, which triggers a buffer overflow.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
CA Internet Security Suite 2010 - 'KmxSbx.sys' Kernel Pool Overflow
exploitdb·2010-11-28
CVE-2010-4502 CA Internet Security Suite 2010 - 'KmxSbx.sys' Kernel Pool Overflow
CA Internet Security Suite 2010 - 'KmxSbx.sys' Kernel Pool Overflow
---
/*
# Exploit Title: CA Internet Security Suite 2010 KmxSbx.sys Kernel Pool
Overflow 0-day Exploit
# Date: 2010-11-28
# Author: Nikita Tarakanov (CISS Research Team)
# Software Link:
http://shop.ca.com/ca/products/internetsecurity/internetsecurity_suite.asp
# Version: up to date, KmxSbx.sys version 6.2.0.22
# Tested on: Win XP SP3
# CVE : CVE-NO-MATCH
# Status : Unpatched
*/
1.Description:
The KmxSbx.sys kernel driver distributed with CA Security Suite contains
a pool corruption vulnerability in the handling of IOCTL 0x88000080.
Exploitation of this issue allows an attacker to execute arbitrary code
within the kernel.
An attacker would need local access to a vulnerable computer to exploit
this vulnerability.
Affec
Exploit-DB
Zabbix Agent - 'net.tcp.listen' Command Injection (Metasploit)
exploitdb·2010-07-03
CVE-2009-4502 Zabbix Agent - 'net.tcp.listen' Command Injection (Metasploit)
Zabbix Agent - 'net.tcp.listen' Command Injection (Metasploit)
---
##
# $Id: zabbix_agent_exec.rb 9669 2010-07-03 03:13:45Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Zabbix Agent net.tcp.listen Command Injection',
'Description' => %q{
This module exploits a metacharacter injection vulnerability
in the FreeBSD and Solaris versions of the Zabbix agent. This flaw
can only be exploited if the attacker can hijack the IP address
of an authorized server (as defined in the configuration file).
},
'Author' => [ 'hdm' ],
'License' => MS
No writeups or analysis indexed.
http://secunia.com/advisories/42267http://www.exploit-db.com/exploits/15624http://www.securitytracker.com/id?1024808http://www.vupen.com/english/advisories/2010/3070http://secunia.com/advisories/42267http://www.exploit-db.com/exploits/15624http://www.securitytracker.com/id?1024808http://www.vupen.com/english/advisories/2010/3070
2010-12-08
Published