Rising Antivirus Drivers Multiple Local Privilege Escalation Vulnerabilities Network Vulnerability

Summary

This host is installed with Rising Antivirus and is prone to local privilege escalation vulnerability.

Impact

Successful exploitation will allow attackers to corrupt kernel memory and execute arbitrary code on the system with kernel privileges. Impact Level: System/Application

Solution

Run SmartUpdate to Get the Fixed Drivers

Insight

The flaw exists due to error in the 'HookCont.sys', 'HookNtos.sys', 'HOOKREG.sys', 'HookSys.sys' and 'RsNTGdi.sys' drivers while processing specially-crafted IOCTL requests.

Affected

Rising Antivirus 2008/2009/2010 on windows

References

http://secunia.com/advisories/38335
http://www.vupen.com/english/advisories/2010/0218
http://xforce.iss.net/xforce/xfdb/55869

Updated on 2017-03-28

Severity

Classification

CVE CVE-2010-1591
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Air Multiple Vulnerabilities - October 12 (Windows)
Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Linux)
Adobe Acrobat Sandbox Bypass Vulnerability - Aug14 (Windows)
Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Windows)
Adobe Acrobat Multiple Vulnerabilities - Mac OS X

Take action and discover your vulnerabilities