Summary
This host is installed with SecurStar DriveCrypt and is prone to privilege escalation vulnerability.
Impact
Successful exploitation will allow remote attackers to execute arbitrary code.
Impact Level: Application.
Solution
Upgrade to SecurStar DriveCrypt version 5.5 or later For updates refer to http://www.securstar.com/downloads.php
Insight
The flaw exists due to an error in the 'DCR.sys' driver when processing 'IOCTLs' and can be exploited to corrupt memory via a specially crafted 0x00073800 IOCTL.
Affected
SecurStar DriveCrypt version 5.3 and 5.4
References
Severity
Classification
-
CVE CVE-2011-0513 -
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 May13 (Windows)
- Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X)
- Adobe Acrobat Sandbox Bypass Vulnerability - Aug14 (Windows)
- Adobe AIR Multiple Vulnerabilities-01 Aug14 (Windows)
- Adobe Flash Media Server Multiple Remote Security Vulnerabilities